Vibe Graveyard

Back to Graveyard

Gemini email summaries can be hijacked by hidden prompts

Aug 2025

Researchers showed a proof-of-concept where hidden HTML/CSS in emails could steer Gemini’s summaries to show fake security alerts.

Incident Details

Perpetrator:Security/AI Product

Severity:Facepalm

Blast Radius:Phishing amplification risk; trust erosion in auto-summaries.

Tech Stack

Google WorkspaceGeminiEmail HTML

References

TechRepublic: Hackers can hide malicious code in Gemini’s email summaries ↗Indian Express: Gmail AI summaries can be manipulated via prompt injection ↗Google: Protecting Gemini from prompt injection (defenses) ↗