- Gemini in the work area provides unique options for fraud, scientists warn
- AI tool can be tricked into showing fake security warnings
- Businesses need to make sure that invisible text is not processed by AI
Cyber criminals have found a creative new way of abusing Google’s generative artificial intelligence (Genai) to steal people’s Gmail accounts.
Google introduced Gemini, its AI-driven Chatbot Assistant in his work area package with productivity apps some time ago, and one of the things Gemini can do is summarize incoming emails when a person receives an email, they can bring a vertical window on the right side of the screen asking Gemini for help with different things such as bringing vital e-mail information,
However, experts have warned that this is also opening Gmail accounts for so-called “quick injection” attack-strikes if the incoming email message contains a hidden prompt for Gemini, it can be performed in the pane.
Is Gemini Phishing for your password?
According to security researcher Marco Figueroa, this is exactly what the E -mail provider is now susceptible to.
By using HTML and CSS, threat actors can add a prompt to Gemini, with its font size set to zero and its color to white. Therefore, the victim will not be able to see it, but Gemini will act on it. If this prompt causes Gemini to show a phishing message, it will do just that, and as the message would come from a trusted source, it increases the chances of success.
Figueroa showed how a malicious prompt could notify the victim that their E -mail account has been compromised and that they need to “call” Google on a phone number that appears in the message to resolve the problem.
To protect against future fast injection attacks, companies need to make sure their E -Mail clients remove, neutralize or ignore content styled to be hidden in the body text. In addition, they may include a post -processing filter that scans the inbox according to “Pressing messages”, URLs or phone numbers.
Finally, companies should educate their employees that the summary provided by the Gemini tool should not be a substitute for security alarms.
Via Bleeping computer
