Promptware Google Calendar Can Be Used as a Weapon by Hackers Promptware is a brand-new, dangerous kind of cyberattack that can transform your personal AI assistant into a spying sleeper agent This article explores hacker google calendar. . In a terrifying exploit, security researchers from Harvard, Tel Aviv University, and Ben-Gurion University have shown how a simple Google Calendar invite can fool Google's Gemini assistant into surreptitiously using Zoom to stream a victim's camera feed.

According to the research paper "Invitation Is All You Need," hackers can take control of your computer without installing viruses on it. They must send you an invitation instead.

The attack takes advantage of a technique known as "Indirect Prompt Injection," whereby hackers conceal harmful instructions in text that is likely to be read by an artificial intelligence system. Promptware Kill Chain (arxiv.org) For this Zoom hack, the researchers described a straightforward four-step "kill chain": The trap: The victim receives an invitation from a hacker via Google Calendar. A malicious command (Promptware) intended to fool the AI is concealed in the invite's description.

The Infection: The AI assistant reads the event when the victim asks it, "What's on my calendar today?" It unintentionally runs the hidden command while processing the text, covertly altering its internal rules.

The Trigger: The malicious command instructs the AI to wait for a typical, innocent user response, like "Thank you," "No," or "Great." The Spy: The compromised assistant executes the hacker's actual goal after the victim says the trigger word. In this instance, it compels the device to launch the Zoom app and join a particular meeting that the hacker controls, instantly streaming the victim's audio and video.

A New Era of "Promptware": Compromised Web Implant (source: arxiv.org) The researchers pointed out that Ben Nassi and Bruce Schneier, two experts, came up with the term "Promptware" to characterize this development. Promptware behaves like conventional malware, in contrast to early AI pranks that only caused chatbots to say offensive things.

compromised Google Calendar invitation (source: arxiv.org) It can perform physical actions, move laterally (opening other apps like Zoom or Smart Home controls), and establish persistence (remaining active in memory). In addition to using Zoom for spying, the researchers demonstrated how this technique could be used to open connected windows, unlock smart doors, and steal emails—all of which were prompted by a calendar invite that the user never even accepted. Google was notified of these findings and has since implemented mitigations.

We give hackers new tools to manipulate us as we give AI assistants more authority over our apps and smart homes.

X for daily cybersecurity updates, LinkedIn, and calendar invites from unknown senders should raise suspicions because they might be more than spam; they might be software that can take over your device. To have your stories featured, get in touch with us.