Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Gemini Enterprise zero-click indirect prompt injection security flaw

Vulnerability
First reported
Last updated
Happening score
H score 15
1 unique sources, 1 articles

Summary

Hide ▲

Google Gemini Enterprise and Vertex AI Search were patched after researchers found a zero-click indirect prompt injection flaw that could exfiltrate sensitive corporate information from connected Google Workspace sources. The issue, dubbed GeminiJack, let attacker-controlled content poison routine searches without a click or security-control trigger. Google said the weakness was fixed after it was reported in June 2025.

Related Happenings

Gemini CLI workspace trust RCE flaw

Vulnerability
First: 30.04.2026 10:07 Last: 30.04.2026 10:07 Sources 1

About this happening: Google has fixed **Gemini CLI** and **google-github-actions/run-gemini-cli** flaws that let **untrusted workspace content** trigger **arbitrary commands on the host** in **CI/head...

Open Happening

Google Antigravity critical prompt-injection RCE flaw

Vulnerability
First: 21.04.2026 13:52 Last: 21.04.2026 13:52 Sources 1

About this happening: **Google** fixed a critical **Antigravity** flaw that let a **prompt injection** bypass **Secure Mode** and escalate to **sandbox escape** and **remote code execution (RCE)**. The...

Open Happening

Perplexity Comet prompt-injection research shows agentic browsers can be trained into phishing traps

Technical Analysis
First: 11.03.2026 18:38 Last: 11.03.2026 18:38 Sources 1

About this happening: **Perplexity's Comet AI browser** is the focus of a **technical analysis** thread showing how **prompt injection** and **malicious URLs** can steer an agentic browser into **data...

Open Happening

UNC6353 and UNC6691 Coruna iOS exploit campaign

Campaign
First: 04.03.2026 21:06 Last: 04.03.2026 21:06 Sources 1

About this happening: The **Coruna** iOS exploit campaign spread through **watering-hole** and **fake finance/crypto** lures, extending reach from **iPhone users** to **crypto users**. **UNC6353** used...

Open Happening

Google Gemini AI in Chrome privilege escalation flaw (CVE-2026-0628)

Vulnerability
First: 02.03.2026 12:27 Last: 02.03.2026 12:27 Sources 1

About this happening: **Google** has fixed **CVE-2026-0628** in **Gemini AI in Chrome**, a high-severity flaw that let a malicious extension hijack the privileged Gemini side panel and expose user priv...

Latest development: 02.03.2026 19:08

Palo Alto Networks Unit 42 researcher Gal Weizman discovered and reported CVE-2026-0628 in Google Chrome on November 23, 2025, identifying insufficient policy enforcement in the WebView tag that could let a malicious extension inject scripts or HTML into a privileged page and seize control of the Gemini Live panel.

Open Happening

Timeline

  1. 10.12.2025 14:05 2 articles · 5mo ago

    GeminiJack disclosed and patched in Gemini Enterprise

    Initial Disclosure

    Researchers at Noma Security discovered GeminiJack in Google Gemini Enterprise and Vertex AI Search in June 2025 and reported it to Google the same day. Google confirmed receipt in August and worked with the researchers on a fix, Noma Security published a proof-of-concept exploit on December 8, 2025, and Google had deployed updates by December 10, 2025 that changed how Gemini Enterprise and Vertex AI Search interact with their underlying retrieval and indexing systems and fully separated Vertex AI Search from Gemini Enterprise.

    Show sources
    Open in new tab