Gemini AI Compromised Through Malicious Calendar Invites, Researchers Warn
Bitdefender, Friday, August 8th, 2025
A study reveals how prompt injection via calendar invites can trigger real-world intrusions through Google's Gemini assistant.
A new security study titled Invitation Is All You Need reveals that Google's Gemini AI assistant is vulnerable to a subtle, yet highly effective attack vector: calendar invites. Researchers Ben Nassi (Tel Aviv University), Stav Cohen (Technion), and Or Yair (SafeBreach) showed that embedding malicious prompts within titles, email subjects or shared document names can let attackers trick Gemini into performing harmful actions, without the user ever realizing they've been compromised.