A significant security vulnerability has been identified within Google Gemini for Workspace. This flaw permits the artificial intelligence tool to generate email summaries which, despite their legitimate appearance, can embed malicious instructions or warnings. These deceptive summaries are engineered to funnel unsuspecting users towards fraudulent phishing websites. Notably, this attack vector operates without the need for traditional attachments or direct hyperlinks.
Google Gemini for Workspace has a security flaw. It can generate email summaries with malicious instructions. These summaries direct users to phishing sites without attachments or links.
