Urgent warning for 1.8 billion Gmail users: ‘Hidden danger' steals passwords in ways even AI can't detect
A 'hidden danger,' which is stealing passwords, has prompted Google to issue an urgent warning for more than a billion Gmail users. The new type of attack has been flying under the radar, attacking 1.8 billion Gmail users without them even realizing it. As the danger looms over Gmail accounts, users need to make sure they follow the right instructions to combat the malicious activity.
According to The Sun, hackers are tricking users into giving their credentials by using Google Gemini, the company's built-in AI tool.
According to cybersecurity experts, bad actors are sending emails with concealed instructions that cause Gemini to generate fake phishing warnings. These tricks deceive users into giving away personal account information or visiting harmful websites. The emails are typically crafted to seem urgent and sometimes appear to come from a business.Hackers will construct these emails by setting the font size to zero and the text color to white before inserting prompts invisible to users but picked up by Gemini, The Sun reported.GenAI bounty manager Marco Figueroa showed how a dangerous prompt could make users receive a false alert claiming their email account was compromised. These warnings would prompt victims to call a fake "Google support" phone number to resolve the issue.
Experts have given multiple recommendations to users to help them fight these prompt injection attacks by acting immediately. The first suggestion asks the companies to configure email clients to detect and neutralize hidden content in message bodies. This move can help counter hackers sending invisible text within emails.Security experts also advised users to use post-processing filters to scan inboxes for things like "urgent messages," URLs, or phone numbers. This step can strengthen defenses against threats.The scam came to light following research led by Mozilla's 0Din security team, which showed proof of one of the hostile attacks last week. The report explained how hackers tricked Gemini into displaying a fake security alert. It warned users their password had been stolen, but the message was fake and designed to steal their information. The trick works by hiding a secret size-zero font prompt in white text that matches the email background.So when someone clicks "summarize this email" using Gemini, the tool reads the hidden message, not just the visible bit. This type of manipulation is called "indirect prompt injection," and it takes advantage of AI's inability to tell the difference between a user's question and a hacker's embedded message.AI can't distinguish between the two, since both simply look like text, and it will usually follow whichever appears first, even if it's malicious. Since Google has yet to patch this way of scamming victims, hackers can still exploit this technique. Sneaking in commands that the AI might follow will remain an effective way to leak sensitive data until users are properly protected from the threat.
AI is also integrated into Google Docs, Calendar, and third-party apps, increasing the potential risk. Google has reminded users during this scamming crisis that it does not send security alerts through Gemini summaries.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Mint
8 minutes ago
- Mint
Behind the rising warranty provisions at two-wheeler companies
India's top two-wheeler manufacturers are setting aside significantly larger sums to cover their warranty costs. A key reason: The rising share of electric vehicles in their overall sales. TVS Motor Co. Ltd, Bajaj Auto Ltd and Hero MotoCorp Ltd increased warranty provisions by 51-107% in FY25. Provisions for warranties are sums allocated for potential defects in vehicles, based on past trends and analysis of customer claims. Electric mobility is relatively new, and early products are more likely to carry defects, industry executives and analysts said, requiring companies to increase allocations to cover warranty claims. Queries emailed to the three companies on the reasons behind higher allocations remained unanswered. Warranty provision numbers for Ather Energy Ltd were not available. Put together, Ola Electric, TVS, Bajaj and Hero constitute about 75% of the country's EV market. Ola Electric, India's largest two-wheeler EV maker in FY25, had also informed shareholders after the release of January-March results that it has increased the warranty provision by ₹250 crore in the quarter. While its full-year warranty funds are not available, the company provisioned ₹159 crore at the end of FY24 for warranties, according to its Red Herring Prospectus. 'As a one-time activity, we have increased our warranty provisions…At a headline level, our Gen 1 and Gen 2 products, especially Gen 1 products, had higher warranty costs because that was the first generation of our platform," Bhavish Aggarwal, chairperson and managing director at Ola Electric, had said then, adding that new generation of models have lower warranty costs as development has advanced. As per an industry executive, EVs are still stabilizing and the companies have a learning curve which they had with ICE (internal combustion engine) vehicles as well. 'Moreover, the increasing geographic footprint also means allocation of funds has to be done according to requirements of different markets," this executive said on the condition of anonymity. TVS saw total provisions for such warranties go up from ₹88 crore to ₹151 crore in FY25, a jump of 72%. Bajaj Auto Ltd saw a growth of 107% in allocation for provisions to ₹118 crore, while Hero saw a 51% rise in allocation for warranties to ₹630 crore. 'Provision is made for estimated warranty claims in respect of vehicles sold which are still under warranty at the end of the reporting period. These claims are expected to be settled from the next financial year," reads the TVS annual report, with a similar description in other companies' annual reports as well. Although such an allocation makes up for less than 1% of the company's total revenue, a sharp jump in warranty expenses can impact operating profit margins, as per analysts. This jump in warranty provisions comes despite efforts by the companies to improve production quality and deploy AI-assisted warranty claim systems, Anurag Singh, advisor at Primus Partners, a consultancy, said. 'The primary reason for the increase is the growing share of electric two-wheelers in their portfolios. These EVs typically come with longer warranty periods and show higher claim ratios, particularly in their early production cycles," he said, adding that as electric two-wheelers are still relatively new, initial batches often see more warranty issues, even as production techniques and quality continue to improve. Puneet Gupta, director at S&P Global Mobility, says electric two-wheelers are facing challenges with batteries and electronic parts, which companies are actively working to fix. This is pushing up warranty costs. 'The EV supply chain is still settling, and disruptions are common. Unlike ICE vehicles, where companies have decades of experience, EVs are new and need special warranty support to build consumer trust," Gupta said. In FY25, legacy companies saw a strong growth in sales of electric vehicles and exports. TVS saw a 29% rise in its electric two-wheeler sales to 237,576 scooters, while Bajaj saw a more than 100% surge to 230,806 scooter sales. Hero MotoCorp saw a 175% increase in EV sales to 48,674 units, according to data from Federation of Automobile Dealers Associations (Fada). On the exports front, the companies saw growth in double digits. Bajaj Auto sales in international markets grew by 13% to 1.67 million units. Hero MotoCorp saw a 44% increase in exports to 289,668 units while TVS MotoCorp saw a 23% increase to 1.08 million units. All the legacy companies have ramped up launches of new electric vehicle products. TVS, Bajaj and Hero have lined up new EV models such as new versions of iQube, Chetak and Vida, respectively, over the last one year and are also looking to tap new geographies to pursue growth.
Time of India
8 minutes ago
- Time of India
AI search pushing an already weakened media ecosystem to the brink
Academy Empower your mind, elevate your skills Generative artificial intelligence assistants like ChatGPT are cutting into traditional online search traffic, depriving news sites of visitors and impacting the advertising revenue they desperately need, in a crushing blow to an industry already fighting for survival."The next three or four years will be incredibly challenging for publishers everywhere. No one is immune from the AI summaries storm gathering on the horizon," warned Matt Karolian, vice president of research and development at Boston Globe Media."Publishers need to build their own shelters or risk being swept away."While data remains limited, a recent Pew Research Center study reveals that AI-generated summaries now appearing regularly in Google searches discourage users from clicking through to source AI summaries are present, users click on suggested links half as often compared to traditional represents a devastating loss of visitors for online media sites that depend on traffic for both advertising revenue and subscription to Northeastern University professor John Wihbey, these trends "will accelerate, and pretty soon we will have an entirely different web."The dominance of tech giants like Google and Meta had already slashed online media advertising revenue, forcing publishers to pivot toward paid Wihbey noted that subscriptions also depend on traffic, and paying subscribers alone aren't sufficient to support major media Boston Globe group has begun seeing subscribers sign up through ChatGPT, offering a new touchpoint with potential readers, Karolian "these remain incredibly modest compared to other platforms, including even smaller search engines."Other AI-powered tools like Perplexity are generating even fewer new subscriptions, he survive what many see as an inevitable shift, media companies are increasingly adopting GEO (Generative Engine Optimization) -- a technique that replaces traditional SEO (Search Engine Optimization).This involves providing AI models with clearly labeled content, good structure, comprehensible text, and strong presence on social networks and forums like Reddit that get crawled by AI a fundamental question remains: "Should you allow OpenAI crawlers to basically crawl your website and your content?" asks Thomas Peham, CEO of optimization startup by aggressive data collection from major AI companies, many news publishers have chosen to fight back by blocking AI crawlers from accessing their content."We just need to ensure that companies using our content are paying fair market value," argued Danielle Coffey, who heads the News/Media Alliance trade progress has been made on this front. Licensing agreements have emerged between major players, such as the New York Times and Amazon, Google and Associated Press, and Mistral and Agence France-Presse, among the issue is far from resolved, as several major legal battles are underway, most notably the New York Times' blockbuster lawsuit against OpenAI and face a dilemma: blocking AI crawlers protects their content but reduces exposure to potential new with this challenge, "media leaders are increasingly choosing to reopen access," Peham even with open access, success isn't to OtterlyAI data, media outlets represent just 29 percent of citations offered by ChatGPT, trailing corporate websites at 36 while Google search has traditionally privileged sources recognized as reliable, "we don't see this with ChatGPT," Peham stakes extend beyond business to the Reuters Institute's 2025 Digital News Report, about 15 percent of people under 25 now use generative AI to get their ongoing questions about AI sourcing and reliability, this trend risks confusing readers about information origins and credibility -- much like social media did before it."At some point, someone has to do the reporting," Karolian said. "Without original journalism, none of these AI platforms would have anything to summarize."Perhaps with this in mind, Google is already developing partnerships with news organizations to feed its generative AI features, suggesting potential paths forward."I think the platforms will realize how much they need the press," predicted Wihbey -- though whether that realization comes soon enough to save struggling newsrooms remains an open question.
The Hindu
8 minutes ago
- The Hindu
AI search pushing an already weakened media ecosystem to the brink
Generative artificial intelligence assistants like ChatGPT are cutting into traditional online search traffic, depriving news sites of visitors and impacting the advertising revenue they desperately need, in a crushing blow to an industry already fighting for survival. "The next three or four years will be incredibly challenging for publishers everywhere. No one is immune from the AI summaries storm gathering on the horizon," warned Matt Karolian, vice president of research and development at Boston Globe Media. "Publishers need to build their own shelters or risk being swept away." While data remains limited, a recent Pew Research Center study reveals that AI-generated summaries now appearing regularly in Google searches discourage users from clicking through to source articles. When AI summaries are present, users click on suggested links half as often compared to traditional searches. This represents a devastating loss of visitors for online media sites that depend on traffic for both advertising revenue and subscription conversions. According to Northeastern University professor John Wihbey, these trends "will accelerate, and pretty soon we will have an entirely different web." The dominance of tech giants like Google and Meta had already slashed online media advertising revenue, forcing publishers to pivot toward paid subscriptions. But Wihbey noted that subscriptions also depend on traffic, and paying subscribers alone aren't sufficient to support major media organisations. The Boston Globe group has begun seeing subscribers sign up through ChatGPT, offering a new touchpoint with potential readers, Karolian said. However, "these remain incredibly modest compared to other platforms, including even smaller search engines." Other AI-powered tools like Perplexity are generating even fewer new subscriptions, he added. To survive what many see as an inevitable shift, media companies are increasingly adopting GEO (Generative Engine Optimization): a technique that replaces traditional SEO (Search Engine Optimization). This involves providing AI models with clearly labelled content, good structure, comprehensible text, and strong presence on social networks and forums like Reddit that get crawled by AI companies. But a fundamental question remains: "Should you allow OpenAI crawlers to basically crawl your website and your content?" asks Thomas Peham, CEO of optimisation startup OtterlyAI. Burned by aggressive data collection from major AI companies, many news publishers have chosen to fight back by blocking AI crawlers from accessing their content. "We just need to ensure that companies using our content are paying fair market value," argued Danielle Coffey, who heads the News/Media Alliance trade organisation. Some progress has been made on this front. Licensing agreements have emerged between major players, such as the New York Times and Amazon, Google and Associated Press, and Mistral and Agence France-Presse, among others. But the issue is far from resolved, as several major legal battles are underway, most notably the New York Times' blockbuster lawsuit against OpenAI and Microsoft. Publishers face a dilemma: blocking AI crawlers protects their content but reduces exposure to potential new readers. Faced with this challenge, "media leaders are increasingly choosing to reopen access," Peham observed. Yet even with open access, success isn't guaranteed. According to OtterlyAI data, media outlets represent just 29% of citations offered by ChatGPT, trailing corporate websites at 36%. And while Google search has traditionally privileged sources recognised as reliable, "we don't see this with ChatGPT," Peham noted. The stakes extend beyond business models. According to the Reuters Institute's 2025 Digital News Report, about 15% of people under 25 now use generative AI to get their news. Given ongoing questions about AI sourcing and reliability, this trend risks confusing readers about information origins and credibility, much like social media did before it. "At some point, someone has to do the reporting," Karolian said. "Without original journalism, none of these AI platforms would have anything to summarise." Perhaps with this in mind, Google is already developing partnerships with news organisations to feed its generative AI features, suggesting potential paths forward. "I think the platforms will realize how much they need the press," predicted Wihbey, though whether that realization comes soon enough to save struggling newsrooms remains an open question.
