Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Google Gemini Calendar invite prompt-injection leak path

Technical Analysis
First reported
Last updated
Happening score
H score 28
1 unique sources, 1 articles

Summary

Hide ▲

A Calendar invite prompt-injection technique can make Google Gemini leak private meeting details, turning a routine scheduling query into a data-exposure path. The issue matters because the malicious instructions are embedded in event content and can be executed when Gemini parses the calendar data.

Related Happenings

PromptSpy backdoor for Android with Gemini API automation

Malware Activity
First: 11.05.2026 16:02 Last: 11.05.2026 16:02 Sources 1

About this happening: The **PromptSpy** backdoor for **Android** was highlighted for using **Gemini APIs** to automate device interaction, increasing the risk of unauthorized control on infected phones...

Open Happening

Google Gemini CLI workspace-trust hardening update

Security Patch Release
First: 30.04.2026 10:07 Last: 30.04.2026 10:07 Sources 1

About this happening: Google released a **Gemini CLI** security update that changes **workspace-trust handling** for **headless CI workflows**, reducing the risk that untrusted folders can trigger **ho...

Open Happening

Google API keys Gemini single-service privilege escalation privilege-escalation flaw

Vulnerability
First: 26.02.2026 22:55 Last: 26.02.2026 22:55 Sources 1

About this happening: **Google API keys** exposed in public code became a **Gemini authentication weakness**, allowing copied keys to reach **private data** and incur **API charges** on victim accounts...

Open Happening

Google Gemini leaked API key mitigation

Advisory/Mitigation
First: 26.02.2026 22:55 Last: 26.02.2026 22:55 Sources 1

About this happening: **Google** is rolling out **mitigations for leaked API keys** that can reach **Gemini API** data, reducing the risk of unauthorized access and usage charges. New **AI Studio keys*...

Open Happening

Google Gemini indirect prompt injection via calendar invites security flaw

Vulnerability
First: 19.01.2026 19:21 Last: 19.01.2026 19:21 Sources 1

How related: The recently discovered Gemini-based Calendar invite attack starts by sending the target an invite to an event with a description crafted as a prompt-injection payload.

About this happening: Researchers disclosed a **Google Gemini** vulnerability in which a malicious **calendar invite** could use **indirect prompt injection** to bypass authorization guardrails and exp...

Open Happening

Timeline

  1. 20.01.2026 19:50 2 articles · 4mo ago

    Miggo discloses Google Gemini Calendar invite prompt injection

    Initial Disclosure

    Researchers at Miggo Security showed that a malicious Google Calendar invite with natural-language prompt-injection instructions could make Google Gemini leak private Calendar data when a victim asked about their schedule; Gemini could create a new event whose description exposed a private meeting summary, bypassing a separate malicious-prompt detector, and Google later added new mitigations.

    Show sources
    Open in new tab