Gmail users beware! Scammers are using Gemini to steal your password. Know how to protect yourself

Scammers are trying to steal passwords from Gmail users through hidden prompts by misusing Google Gemini AI.

If you use Gmail, then this news is very important for you. Cybersecurity experts have revealed a new Gmail scam, in which scammers are misusing the Google Gemini AI tool. The purpose of this dangerous scam is to steal users' Gmail passwords and account details.

What is Gmail's Gemini scam?

Google's Gemini is an AI tool that integrates into applications like Gmail through a sidebar. It summarizes emails, updates calendars and helps users give smart replies, but now hackers are using this tool to deceive users.

According to cyber security expert Marco Figueroa, scammers insert hidden prompts (AI instructions) in emails that are not visible. These prompts are inserted in the email through HTML and CSS in white color and zero font size so that they remain hidden from the user's eyes.

When the user opens such a mail and asks Gemini to create a summary, the AI tool reads these hidden instructions and generates a fake warning. This warning says that your Gmail account has been hacked and a fake customer support number is given. If the user calls on that number, scammers can force him to give sensitive account information by deceiving him.

How to avoid this AI-based Gmail scam?

Security experts have given some important tips that can protect you from such scams:

Do not click on links given in unknown emails.

Always check the URL of the website carefully. The URL of the real Gmail is: https://mail.google.com

If any email looks suspicious, immediately report it through “Report phishing”.

Keep changing your Gmail password from time to time.

Use Two-Factor Authentication (2FA) - it doubles the security of your account.

About 1.8 billion Gmail users are at risk

The impact of such scams can be huge as Gmail has more than 1.8 billion active users worldwide. Google has been informed about this, but until the security updates are fully implemented, the vigilance of users is the biggest weapon.