ADVERTISEMENT

Google fixes GeminiJack zero-click exposing corporate Gmail, Calendar invites, shared Docs

A newly uncovered AI injection prompt vulnerability in the Google Gemini enterprise AI ecosystem – allowing attackers to steal sensitive Gmail, Docs, and Calendar data – has been fixed, but experts say it is just the beginning of AI vulnerabilities to come.

Google Workspace 2

Image by Shutterstock

Stefanie Schappert
Stefanie Schappert Senior Journalist
Dec 10, 2025 Updated: 11 December 2025 3 min read
Key takeaways:
Google GeminiJack timeline
Image by Noma Labs
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.

How it worked

ADVERTISEMENT
  • Years of internal emails - including customer and financial communications
  • Complete calendar histories - revealing negotiations, business relationships, and organizational behavior
  • Entire document repositories - from contracts to technical architecture
“This is excessive agency in action. An AI assistant operating exactly as designed, but functioning as the most efficient corporate spying tool imaginable.”
- Noma Labs

ADVERTISEMENT