Hosted on MSN

Google Gemini security flaw could have let anyone access systems or run code

Gemini could automatically run certain commands that were previously placed on an allow-list If a benign command was paired with a malicious one, Gemini could execute it without warning Version 0.1.14 ...
Ars Technica

Flaw in Gemini CLI coding tool could allow hackers to run nasty commands

Researchers needed less than 48 hours with Google’s new Gemini CLI coding agent to devise an exploit that made a default configuration of the tool surreptitiously exfiltrate sensitive data to an ...
Wired

Hackers Hijacked Google’s Gemini AI With a Poisoned Calendar Invite to Take Over a Smart Home

For likely the first time ever, security researchers have shown how AI can be hacked to create real-world havoc, allowing them to turn off lights, open smart shutters, and more. Each unexpected action ...