Gmail's AI email summaries can be hacked to redirect users to phishing sites
According to Mozilla's GenAI Bug Bounty Programs Manager, Marco Figueroa, a security researcher demonstrated how a prompt injection vulnerability in Google Gemini for Workspace allowed hackers to 'hide malicious instructions inside an email', which were activated when users clicked on the 'Summarize this email' option in Gmail.
The process involved threat actors creating an email with invisible instructions for Gemini that were hidden in the body at the end of the message using HTML and CSS by setting the font size to zero and changing the text colour to white.
As there are no attachments in these emails, the message is highly likely to bypass Google's spam filters and reach the target's inbox. When the recipient opened their email and asked Gemini to generate a summarised version of the email, the AI tool was found to obey these hidden instructions.
These malicious instructions caused Gmail to show a phishing warning, which looked like it came from Google itself. Since the warning is coming from Gemini itself, many users won't even think twice about it, which is what makes the exploit very dangerous.
Figueroa also shares some ways in which these injection prompts can be detected and dealt with. One way is that Gemini can either remove or ignore the content hidden in the body text. Alternatively, Google can also use a post-processing filter that scans Gemini's output for things like urgent messages, phone numbers and URLs and flags them for further review.
When BleepingComputer asked Google about the security exploit and how it plans to prevent such attacks, a company spokesperson said that some mitigations were in place and others were being implemented. The tech giant also said that, as of now, there are no hackers using this trick in real-world attacks, but the research does show that it's possible to do so.
Google may be very good at finding and fixing such security loopholes, but threat actors are usually known for thinking one step ahead. We suggest users not to blindly trust any AI-generated email summaries and check links and emails before clicking on them.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Time of India
4 hours ago
- Time of India
Baidu crashes 75% from peak — is China's AI titan in trouble or just on sale?
Baidu stock 2025 : Long considered China's Google, Baidu has watched its shares fall nearly 75% from its 2021 high, and investors are wondering if the company is just undervalued or truly in trouble in an ever-changing world of tech, as per a report. How Baidu Rose to Power After Google Left China But in 2021, Baidu was at its height. After Google's departure from mainland China due to censorship issues in 2010, Baidu emerged as the search engine of mainland China, as per The Motley Fool. Its income skyrocketed from 319 million yuan in 2005 to over 124 billion yuan ($19.5 billion) in 2021, according to the report. That popularity boosted its stock to an all-time high of $339.91 per share, a 12,489% rise since its IPO, as per The Motley Fool report. Productivity Tool Zero to Hero in Microsoft Excel: Complete Excel guide By Metla Sudha Sekhar View Program Finance Introduction to Technical Analysis & Candlestick Theory By Dinesh Nagpal View Program Finance Financial Literacy i e Lets Crack the Billionaire Code By CA Rahul Gupta View Program Digital Marketing Digital Marketing Masterclass by Neil Patel By Neil Patel View Program Finance Technical Analysis Demystified- A Complete Guide to Trading By Kunal Patel View Program Productivity Tool Excel Essentials to Expert: Your Complete Guide By Study at home View Program Artificial Intelligence AI For Business Professionals Batch 2 By Ansh Mehra View Program ALSO READ: Blade and Joby stocks soar after $125 million rideshare deal — is this the future of flying taxis? by Taboola by Taboola Sponsored Links Sponsored Links Promoted Links Promoted Links You May Like Physiotherapist: The Fastest Way to Overcome Knee Pain and Swelling Wellnee Undo Baidu's Massive Stock Decline But that momentum has dissipated. In 2025, Baidu is trading at about $88 a share and is up less than 4% year to date, well behind other tech stocks in a rebound year, as per the report. Why Baidu's Core Business Is Losing Steam Its core business, online advertising, has been hardest hit by shifting user behavior, according to The Motley Fool. In 2021, the majority of Baidu's approximately $78 billion revenue was derived from its search- and display-based advertising services, as per the report. But social media apps such as Douyin (China's TikTok), Tencent's WeChat, and other mobile-centric platforms fundamentally altered individuals' manner of searching for information and engaging with digital content, as reported by The Motley Fool. Live Events ALSO READ: Blade and Joby stocks soar after $125 million rideshare deal — is this the future of flying taxis? Baidu Bets Big on AI, Cloud, and Autonomous Driving By 2024, online marketing revenue comprised only 55% of Baidu's business, according to the report. On the other hand, its non-advertising businesses—particularly its AI Cloud business—are growing more robustly, as per The Motley Fool. That unit currently accounts for around 24% of total revenue and features such items as its ERNIE large language model, in-house AI chips like Kunlun 800, cloud infrastructure, and its Apollo autonomous vehicle platform, as reported by The Motley Fool. What's Going On With iQiyi, Baidu's Struggling Streaming Arm? There's also iQiyi , Baidu's video equivalent of Netflix, once a major growth driver, it has of late not been able to churn out breakout content or garner sustained ad revenue, according to the report. Baidu has even contemplated spinning it off completely to concentrate more on cloud and AI, reported The Motley Fool. Baidu's 2025 Forecast: Flat Revenue and Falling Profits Even with its expansion into high-growth segments, Baidu's financials have been slow. The analysts consensus projected flat revenues and a 17% drop in earnings in 2025, as reported by The Motley Fool. The firm's online marketing services and iQiyi segments are expected to remain weak, but its AI Cloud business could grow rapidly enough to offset those declines, as reported by The Motley Fool. However, Baidu's earnings will come down because of its higher investments in its AI Cloud platform, driverless vehicles, and fresh media content for iQiyi, according to the report. Analysts See Modest Growth for Baidu in 2026 While, for 2026, analysts have projected Baidu's revenue and EPS to rise 5% and 3%, respectively, reported The Motley Fool. "That stabilization would be a step in the right direction, but Baidu would still be a slow-growth stock with limited upside potential," wrote The Motley Fool. FAQs Why has Baidu's stock dropped so much since 2021? Baidu's stock is down about 75% from its peak because of weak ad revenue, rising competition, and slower earnings growth despite big AI investments, as per The Motley Fool report. Is Baidu still the top search engine in China? Yes, but its dominance is fading as more users turn to social media platforms like Douyin and WeChat for information and entertainment, as per The Motley Fool report.
Time of India
4 hours ago
- Time of India
Airtel launches cloud service, says will have cost advantage over rivals
Synopsis Bharti Airtel has launched its own sovereign cloud service under the 'Xtelify' brand to compete with hyperscalers like AWS and Google. The company says its integrated network-cloud model offers a 30–40% cost advantage. Already serving clients like Singtel, Globe Telecom, and subsidiaries, Airtel aims to scale the platform into a sizable long-term business targeting Indian enterprises with secure, scalable, and cost-effective cloud solutions.
Time of India
6 hours ago
- Time of India
SC stays Madras HC order in Testbook suit against Google Play Store billing
Academy Empower your mind, elevate your skills The Supreme Court on Monday stayed the Madras High Court 's order that allowed continuation of the proceedings on the Testbook Edu Solutions ' petition against Google India Digital Services ' updated payment policies relating to its proprietary Google Play Store A bench comprising Justices JB Pardiwala and R Mahadevan stayed the HC's June 11 order that dismissed Google 's petition filed under Order VII Rule 11 of the Civil Procedure Code, which allows a court to reject a plaint at the initial HC had dismissed Google's contention that Testbook's suit was barred under the Competition Act, 2002, and the Payment and Settlement Systems Act, 2007. The HC had held that Testbook's suit contained contractual issues that fell within its jurisdiction and could not be dismissed on the which operates over 700 mobile applications for government exam preparation, had challenged the search engine giant's Google Play Billing System and User Choice Billing, which mandate service fees ranging from 15% to 30% from application developers. Google's policies amounted to a unilateral novation of its agreement with application developers, and they were contrary to public policy and imposed undue economic duress on the developers, Testbook told the SC that the Testbook's suit was barred under the Competition Act, which expressly ousts civil jurisdiction in respect of matters within the domain of the Competition Commission of India (CCI) and the National Company Law Appellate Tribunal (NCLAT). Further, the allegations concerning the Payment and Settlement Systems Act are solely within the purview of the Reserve Bank of India (RBI), as the sectoral regulator, it counsel Harish Salve, appearing for Google, said that the single judge of the HC held that the plaint filed by Testbook is maintainable despite the Division Bench of the same HC conclusively ruling that identical claims by other similarly placed parties were barred under Section 61 of the Competition Act, 2002, and the Payment and Settlement Systems Act, 2007.'The impugned judgment is therefore an outlier decision, rendered contrary to binding precedent, which should be corrected by the SC. It also implicates important issues of principle, including the exclusive scope of the powers of two specialist regulators: the Competition Commission of India and the Reserve Bank of India, conferred by statute. Not only are these exclusive powers important as a matter of regulatory coherence and principle, they also exist to avoid fragmented or inconsistent outcomes and floods of individual suits concerning the same contract: one which the CCI is in fact already examining in a pending investigation,' Google stated in its objected to the maintainability of the connected suits under Order Vll Rule 11 of the Code of Civil Procedure, saying the Division Bench had upheld the rejection of the connected suits filed by similarly placed mobile app developers, explicitly holding that claims stemming from allegations of abuse of dominant market position fall exclusively within the jurisdiction of the CCI and not that of the civil courts on account of Section 61 of the Competition Act.'The Testbook plaint is materially identical in its allegations, reliefs, and cause of action to these previously rejected connected suits, particularly the plaint filed by another app developer, Nasadiya Technologies,' the tech giant stated.
