Weaponized Invite Enabled Calendar Data Theft via Google Gemini - SecurityWeek

A vulnerability in Google Gemini allowed attackers to steal private meeting data by creating malicious calendar invites with hidden instructions. The attack exploited Gemini’s integration with Google Calendar, where the AI would summarize and expose victim meeting details in a new, attacker-controlled event.