Post #8235

🚨 Researchers found an indirect prompt injection flaw abusing Google Gemini via calendar invites. A hidden prompt in an event could trigger Gemini, when asked about a schedule, to summarize private meetings into a new calendar entry—visible to attackers in some enterprise setups. No user action required. 🔗 Read → https://thehackernews.com/2026/01/google-gemini-prompt-injection-flaw.html