Hackers' Pub

Syntax	Description	Examples
`"` keyword `"`	Finds the string within quotes, including spaces. Case-insensitive. (Escape quotes inside with `\"`)	`"Hackers' Pub"`
`from:` handle	Finds content written by the specified user.	`from:hongminhee` `from:hongminhee@hollo.social`
`lang:` ISO 639-1	Finds content written in the specified language.	`lang:en`
`#` tag	Finds content with the specified tag. Case-insensitive.	`#HackersPub`
condition condition	Finds content that satisfies both conditions on either side of the space (logical AND).	`"Hackers' Pub" lang:en`
condition `OR` condition	Finds content that satisfies at least one of the conditions on either side of the OR operator (logical OR).	`#HackersPub OR "Hackers' Pub" lang:en`
`(` condition `)`	Combines the operators within the parentheses first.	`(#HackersPub OR "Hackers' Pub" OR "Hackers Pub") lang:en`

nixCraft 🐧 @nixCraft@mastodon.social

7/14/2025, 5:44:56 PM

Public

Are you using AI to summary emails with Google gmail and workspace?
Google Gemini Bug Turns Gmail Summaries into Phishing Attack: No links or attachments are required; the attack relies on crafted HTML / CSS inside the email body. Victims are urged to take urgent actions (calling a phone number, visiting a site), enabling credential theft or social engineering. That is all.

More
https://0din.ai/blog/phishing-for-gemini &

https://www.pcmag.com/news/google-gemini-bug-turns-gmail-summaries-into-phishing-attack

#ai

A security researcher discovered a way to trick the AI-generated email summary feature into promoting malicious instructions to unsuspecting users. The screenshot shows how one can trick with a prompt-injection vulnerability in Google Gemini for Workspace so user can call given number or visit website (on the right side).

If you have a fediverse account, you can quote this note from your own instance. Search https://mastodon.social/users/nixCraft/statuses/114852829363078529 on your instance and quote it. (Note that quoting is not supported in Mastodon.)