New Gmail Phishing Attack Uses AI Prompt Injection to Evade Detection

The real innovation lies hidden from the user. Buried within the email’s source code is text deliberately written in the style of prompts for large language models like ChatGPT or Gemini. This “prompt injection” is designed to hijack the AI-powered security tools that Security Operations Centers (SOCs) increasingly use for triage and threat classification.

While definitive attribution is challenging, WHOIS records for the attacker’s domain list contact information in Pakistan, and URL paths for telemetry beacons contain Hindi/Urdu words. These clues, though not conclusive, suggest a possible link to threat actors in South Asia.

To read the complete article see: New Gmail Phishing Attack