A significant 0-click vulnerability named GeminiJack was discovered in Google’s Gemini Enterprise and Vertex AI Search, allowing attackers to steal confidential corporate data without user interaction through indirect prompt injection. Google has since deployed updates to address this data exfiltration flaw.
Edward Kiledjian
@ekiledjian