Urgent warning to all 1.8b Gmail users over 'new wave of threats' stealing accounts… Do this NOW
Hackers are using Google Gemini, the AI built-in tool in Gmail and Workspace, to trick users into handing over their credentials.
Cybersecurity experts found that bad actors are sending emails with hidden instructions that prompt Gemini to generate fake phishing warnings, tricking users into sharing their account password or visiting malicious sites.
These emails are crafted to appear urgent and sometimes from a business.
By setting the font size to zero and the text color to white, attackers can insert prompts invisible to users but actionable by Gemini.
Marco Figueroa, GenAI bounty manager, demonstrated how such a malicious prompt could falsely alert users that their email account has been compromised, urging them to call a fake 'Google support' phone number provided in to resolve the issue.
To counter these prompt injection attacks, experts recommend that companies configure email clients to detect and neutralize hidden content in message bodies.
Additionally, implementing post-processing filters to scan inboxes for suspicious elements like 'urgent messages,' URLs, or phone numbers could bolster defenses against such threats.
The trick was uncovered after research, led by Mozilla's 0Din security team, showed proof of one of the attacks last week.
The report demonstrated how Gemini could be fooled into displaying a fake security alert, one that claimed the user's password had been compromised. It looked real but was entirely built by hackers to steal information.
The trick works by embedding the prompt in white text that blends into the email background. So when someone clicks 'summarize this email,' Gemini processes the hidden message, not just the visible text.
This type of manipulation, called 'indirect prompt injection,' takes advantage of AI's inability to tell the difference between a user's question and a hacker's hidden message.
According to IBM, AI cannot tell the difference, as they both look like text, so AI follows whichever comes first, even if it is malicious.
Security firms like Hidden Layer have shown how an attacker could craft a completely normal-looking message but fill it with hidden codes and URLs, tools designed to fool AI.
In one of the cases, hackers sent an email that looked like a calendar invite. But inside the email, hidden commands told Gemini to warn the user about a fake password breach, tricking them into clicking a malicious link.
Google admitted this kind of attack has been a problem since 2024 and said it added new safety tools to stop it, but the trick appears to still be working.
To counter these prompt injection attacks, experts recommend that companies configure email clients to detect and neutralize hidden content in message bodies
In one case, a major security flaw reported to Google showed how attackers could hide fake instructions inside emails that trick Gemini into doing things users never asked for.
Instead of fixing the issue, Google marked the report as 'won't fix,' meaning they believe Gemini is working the way it is supposed to.
That decision shocked some security experts, because it basically means Google sees this behavior, not recognizing hidden instructions, as expected, not broken.
This means that the door is still open for hackers to sneak in commands that the AI might follow without question.
Experts are concerned as if the AI cannot tell the difference between a real message and a hidden attack, and Google would not fix the behavior, then the risk remains active. AI is getting more popular for quick decisions and email summarizer.
It is not just Gmail as the risk spreads as AI is incorporated into Google Docs, Calendar, and outside apps. Cybersecurity experts say some of these attacks are even being created and carried out by other AI systems, not just human hackers.
Google has reminded users that it does not issue security alerts through Gemini summaries. So if a summary tells you your password is at risk or gives you a link to click, treat it as suspicious and delete the email.
In a recent blog, Google said that Gemini now ask for confirmation before doing anything risky, like sending an email or deleting something. That extra step gives users a chance to stop the action, even if the AI was tricked.
Google also displays a yellow banner if it detects and blocks an attack. If the system finds a suspicious link in a summary, it removes it and replaces it with a safety alert. But some problems still have not been solved.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Reuters
2 hours ago
- Reuters
Microsoft probing if Chinese hackers learned SharePoint flaws through alert, Bloomberg News reports
July 25 (Reuters) - Microsoft (MSFT.O), opens new tab is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to exploit flaws in its SharePoint service before they were patched, Bloomberg News reported on Friday. A security patch Microsoft released this month failed to fully fix a critical flaw in the U.S. tech giant's SharePoint server software, opening the door to a sweeping global cyber espionage effort. In a blog post on Tuesday, Microsoft said two allegedly Chinese hacking groups, dubbed "Linen Typhoon" and "Violet Typhoon," were exploiting the weaknesses, along with a third, also based in China. The tech giant is probing if the program led to the widespread exploitation of vulnerabilities in its SharePoint software globally over the past several days, the report said. Microsoft did not immediately respond to a Reuters request for comment on the report.
Reuters
5 hours ago
- Reuters
Artificial Intelligencer: Why AI's math gold wins matter
July 24 (Reuters) - This was originally published in the Artificial Intelligencer newsletter, which is issued every Wednesday. Sign up here to learn about the latest breakthroughs in AI and tech. At the Reuters Momentum AI conference, opens new tab in Silicon Valley last week, I heard two phrases over and over from Fortune 500 executives: "human in the loop" and "flat is the new up." They reflect a cautious but ambitious strategy: While nearly every company still keeps humans working alongside AI, the early impact is already showing that companies are growing revenue without hiring more people. What's changed? The nature of work within organizations. The first cuts are already hitting outsourced labor. Employees are shifting to higher-value work, such as handling complicated tasks and reviewing AI's output. Revenue per head is on the rise, or as some say, 'flat headcount is the new up.' Despite the narrative that 2025 will be the year of the AI agent, truly agentic workflows still seem distant for complex use cases. In fact, some executives still view AI models as just pattern matchers, not true reasoners. Researchers at Google and OpenAI would beg to differ, as I learned after speaking with them following both labs' gold medal wins at this year's International Mathematical Olympiad. I believe this is an exciting milestone for the reasoning paradigm that AI models are striving to advance. Scroll down to read why this matters. Email me at opens new tab or follow me on LinkedIn, opens new tab to share any feedback, and what you want to read about next in AI. Our latest reporting in Tech & AI Exclusive-Blackstone drops out of group bid for TikTok US White House to unveil plan to push US AI abroad, crackdown on US AI rules Trump administration seeks pathway for US companies to export AI chips Nvidia CEO's China charm offensive underscores rock star status in key market AI models with systemic risks given pointers on how to comply with EU AI rules TSMC posts record quarterly profit on AI demand, but wary about tariffs How AI won math gold AI crossed a threshold that even caught the best researchers by surprise. For the first time, an AI from Google DeepMind won a gold medal at the International Mathematical Olympiad, the world's most elite high school math competition. OpenAI, which did not officially participate in this year's IMO, said its model also achieved gold-medal performance, based on solutions graded by external experts using IMO guidelines. While it's tempting to see this as just another headline in AI's relentless march, I spent time speaking with the minds behind these models—some of whom are former IMO medalists themselves—to understand how we got here and what these wins reveal about the frontier of AI. The main takeaway? The reasoning abilities demonstrated by models like DeepMind's Gemini Pro and OpenAI's o1 series have endless possibilities. This win is also a testament to the classic recipe for model improvement: high-quality data and huge amounts of compute. While neither lab revealed the full details of their methods, both demonstrated the power of thinking for longer. Since last year, top AI labs have shifted focus from scaling up pre-training and increasing model sizes to using test-time compute to give models more 'thinking time'. OpenAI described how its model tackled each problem dozens of times simultaneously, using consensus and multi-agent strategies to aggregate the best solutions. DeepMind, meanwhile, employed its 'Deep Think' technique, enabling Gemini to explore many solution paths at the same time, synthesize ideas, and generate rigorous, human-readable proofs. In what researchers dubbed a 'paradigm shift,' DeepMind's AI has gone from needing expert human translation just a year ago to solving five of six IMO problems in natural language this week. This breakthrough directly challenges the long-held skepticism that AI models are just clever mimics, predicting the next word. Math, requiring multi-step, creative proofs, has become the ultimate test of true reasoning, and AI just passed. We don't know exactly how much parallel computation went into solving each question, but OpenAI told us it was 'very expensive.' After all, the models were given about 4.5 hours—just like human contestants—to work through each set. This highlights how today's most intelligent models demand vast compute resources, helping explain AI labs' insatiable appetite for chips like Nvidia's GPUs. And as these methods expand into other domains—coding, science, creative writing—the computational demands will continue to grow. Both labs also credit their breakthroughs to high-quality data: step-by-step, annotated proofs, not just final answers. DeepMind, in particular, pointed to new reinforcement learning techniques that reward not just correctness, but the elegance and clarity of a proof. So what does this mean for the future? The 'can AI reason?' debate may be settled—at least for domains as challenging as Olympiad mathematics. The ever-growing emergence of true thinking capabilities inside AI models has the potential to transform many domains as researchers crack the code on math and move on to new frontiers. DeepMind is already working to put its system in the hands of mathematicians and, soon, the wider public. OpenAI says it's using what it's learned from this model to train others, but this particular capability won't be included in the upcoming GPT-5 release this summer. Chart of the week You're probably reading this AI newsletter because you're already an AI user, which will put you in the basket of 61% of Americans who have welcomed AI into their lives. The rest, a solid 39%, remain unconvinced, according to a report from Menlo Ventures, opens new tab. The top blocker? Good old-fashioned human connection. About 80% of non-adopters say they'd rather deal with a person than a machine, especially for important decisions. In fact, 53% say they want accountability and oversight from another human, not just a digital assistant who always gives instant responses. Other top hurdles include data privacy worries (71%), skepticism about AI's usefulness (63%), and a healthy distrust of the information AI serves up (58%). So, while the bots may be ready, the humans are holding out for more trust, transparency, and—let's face it—a bit more humanity.
Geeky Gadgets
7 hours ago
- Geeky Gadgets
Google Pixel 10 Pro XL: 8 Reasons It's the Ultimate Flagship
The Google Pixel 10 Pro XL, scheduled for release on August 20, 2025, introduces a series of updates designed to enhance both functionality and user experience. While the overall design retains the hallmark simplicity of the Pixel series, the device incorporates advancements in artificial intelligence, hardware, and charging technology. These updates aim to deliver a more seamless, efficient, and enjoyable experience for users, making the Pixel 10 Pro XL a noteworthy addition to Google's smartphone lineup. The video below from TechTalkTV gives us more details about the handset. Watch this video on YouTube. Refined Design with New Color Options The Pixel 10 Pro XL maintains the familiar design language of its predecessor, the Pixel 9 Pro, but with subtle refinements that improve usability and aesthetics. The camera glass ring has been slimmed down, giving the back of the device a sleeker appearance, while the SIM card tray has been repositioned for easier access. The most noticeable design update comes in the form of new color options. Users can now choose from Obsidian, Porcelain, Moonstone (the standout 'hero' color), and Jade. These fresh color choices add variety while preserving the minimalist and modern aesthetic that defines the Pixel series. Smarter AI with 'Magic Q' One of the standout features of the Pixel 10 Pro XL is the introduction of 'Magic Q', a new AI-powered tool designed to anticipate user needs and streamline everyday tasks. This feature uses advanced machine learning to suggest relevant actions, such as pulling up links, providing contextual information, or even automating routine tasks based on your activity. Google has placed a strong emphasis on privacy, making sure that all data processed by Magic Q is securely stored in an isolated environment. This innovation underscores Google's commitment to blending innovative technology with user-centric security, making the Pixel 10 Pro XL a smarter and more intuitive device. Enhanced Display for Comfort and Immersion The Pixel 10 Pro XL features a significant upgrade in display technology, doubling the Pulse Width Modulation (PWM) refresh rate to an impressive 480 Hz. This enhancement reduces eye strain, making the device more comfortable for prolonged use, whether you're reading, gaming, or streaming videos. The higher refresh rate also ensures smoother scrolling and a more immersive visual experience, catering to both casual users and those who demand high performance from their devices. With this display, Google has prioritized both functionality and user comfort, delivering a screen that stands out in its class. Battery, Storage, and Charging Upgrades The Pixel 10 Pro XL features a 5200 mAh battery, the largest capacity ever offered in the Pixel lineup. This upgrade translates to longer usage times, reducing the need for frequent recharging and allowing users to stay connected throughout the day. Storage options have also been expanded, with configurations starting at 256 GB and going up to 1 TB, providing ample space for photos, videos, and apps. These enhancements ensure that users have both the power and storage capacity to meet their needs. Charging capabilities have been significantly improved as well. The Pixel 10 Pro XL introduces T2 wireless charging support, allowing faster and more efficient wireless charging. While it remains unclear whether the device includes built-in magnets for alignment, the charging speeds are impressive, with support for 39 W wired charging and 26 W wireless charging. These advancements reduce downtime and enhance the overall convenience of using the device. Performance Powered by the Tensor G5 Chip At the heart of the Pixel 10 Pro XL is the Tensor G5 chip, developed using TSMC's advanced manufacturing process. This processor emphasizes power efficiency and heat management, making sure smooth and reliable performance even during demanding tasks. Rather than focusing solely on raw processing power, the Tensor G5 prioritizes optimization, delivering a balanced performance that enhances everyday usability. This approach aligns with Google's philosophy of creating devices that are not only powerful but also practical and user-friendly. Pricing and Storage Adjustments The Pixel 10 Pro XL introduces changes to its pricing structure, largely due to the removal of the 128 GB storage option for the XL model. While this adjustment results in a higher starting price, the expanded storage options and upgraded features aim to provide greater value for users. This pricing shift may influence purchasing decisions, particularly for those seeking an affordable entry point. However, the combination of enhanced storage, improved performance, and new features makes the Pixel 10 Pro XL a compelling choice for those willing to invest in a premium device. Notable Updates to the Standard Pixel 10 The standard Pixel 10 model also receives several noteworthy upgrades, making it a strong alternative for users seeking a more budget-friendly option. Key improvements include a triple-camera system with a 5x telephoto lens, a larger battery, and faster charging speeds. Despite these enhancements, the standard model retains its original price point, offering excellent value without compromising on essential features. This makes the Pixel 10 an attractive choice for those who want a high-quality smartphone experience at a lower cost. A Thoughtful Evolution of the Pixel Series The Google Pixel 10 Pro XL represents a thoughtful evolution of the Pixel lineup, combining incremental hardware upgrades with innovative AI-driven software enhancements. By addressing key user needs—such as improved privacy, extended battery life, and smarter tools—Google has created a device that refines the smartphone experience without resorting to dramatic changes in design or pricing. For users seeking a balance of performance, functionality, and security, the Pixel 10 Pro XL stands out as a well-rounded and reliable choice. Stay informed about the latest in Google Pixel 10 Pro XL by exploring our other resources and articles. Source & Image Credit: TechTalkTV Filed Under: Android News, Mobile Phone News, Top News Latest Geeky Gadgets Deals Disclosure: Some of our articles include affiliate links. If you buy something through one of these links, Geeky Gadgets may earn an affiliate commission. Learn about our Disclosure Policy.
