Credit: Edgar Cervantes / Android Authority
TL;DR
- A security researcher found that Gemini is susceptible to ASCII smuggling attacks.
- These attacks hide malicious prompts in emails or calendar invites that LLMs can read when asked to summarize text.
- Google has dismissed the threat as a social engineering attack, placing the responsibility on the end user.
Google tends to take the security of its users seriously, implementing a range of measures to keep its products safe to use. In fact, that’s part of the thought process behind the company’s crackdown on sideloading apps from unverified developers on Android. But it looks like the company isn’t too concerned about fixing an issue that makes Gemini susceptible to a troubling type of cyber threat.
Don’t want to miss the best from Android Authority?