{"id":3877,"date":"2025-08-26T08:58:38","date_gmt":"2025-08-26T08:58:38","guid":{"rendered":"https:\/\/certera.com\/blog\/?p=3877"},"modified":"2025-08-26T08:58:39","modified_gmt":"2025-08-26T08:58:39","slug":"gmail-phishing-with-prompt-injection-tricks-humans-and-ai","status":"publish","type":"post","link":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/","title":{"rendered":"Gmail Phishing with Prompt Injection: Tricks Humans and AI. Are You Ready?"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/coesecurity.com\/gmail-phishing-with-prompt-injection\/\"><\/a>Your email security is locked down? Do you think your AI-powered filters can catch anything hackers throw at you?<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A <strong>new phishing attack targeting Gmail users<\/strong> is so clever, it\u2019s not just designed to fool you. It\u2019s designed to fool the very AI that\u2019s supposed to protect you.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This isn\u2019t your average &#8220;<strong>click here to reset your password<\/strong>&#8221; scam. This is a next-level threat that plays psychological games with both humans and machines at the same time. And if you\u2019re not paying attention, it could bypass everything you have in place.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Let\u2019s break down exactly what this attack is, how it works, and what you absolutely must do to protect yourself.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-what-does-this-phishing-attack-look-like\">What Does This Phishing Attack Look Like?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">On the surface, it looks familiar. Deceptively simple, even. You get an email in your Gmail inbox. The subject line screams urgency.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>\u201cLogin Expiry Notice 8\/20\/2025 4:56:21 p.m.\u201d<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Your heart misses a beat. Are you locked out of your Gmail account?<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The body of the message appears to be official. It has the Google brand that you are familiar with and trusting of. There is a warning that your password is going to expire soon, and you have to \u201c<strong>confirm your credentials<\/strong>\u201d to keep your account active.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"486\" height=\"342\" src=\"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/08\/password-expiry-email.webp\" alt=\"Gmail Password Expiry Notice\" class=\"wp-image-3878\" srcset=\"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/08\/password-expiry-email.webp 486w, https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/08\/password-expiry-email-300x211.webp 300w\" sizes=\"(max-width: 486px) 100vw, 486px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">This is a classic <a href=\"https:\/\/certera.com\/blog\/what-is-social-engineering-techniques-examples-best-practices-preventions\/\">social engineering attack<\/a>. They don&#8217;t need to hack you. They need you to panic. &#8220;<strong>Your password will expire<\/strong>.&#8221; That line alone is enough to short-circuit your brain. Urgency makes you act before you think. Authority makes you trust the source. Fear makes you click.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Most people stop there, and that&#8217;s why it works. But the real problem isn\u2019t the email itself. The danger lives in the invisible parts of the code behind the link, the place your browser quietly takes you.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-prompt-injection-against-ai\">Prompt Injection Against AI<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Companies don\u2019t just depend on people anymore. They\u2019ve got AI watching the gates. Sophisticated systems in their SOCs that scan and flag bad emails before anyone sees them.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">So the attackers asked a different kind of question. What if you attack the guard instead of the gate?<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Hide the embedded code. They placed commands not to you, but to the AI. That is a <strong>prompt injection attack<\/strong>. By using a deception to make the model work against itself, what is interesting is that they can deceive people. The thing is that they can trick the devices that are supposed to keep us safe.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-while-the-ai-is-distracted-chasing-nonsense-the-real-threat-walks-right-past-what-does-that-buy-the-attacker-three-things\">While the AI is distracted chasing nonsense, the real threat walks right past. What does that buy the attacker? Three things.<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>First, misclassification<\/strong>. The system stamps \u201csafe\u201d on what\u2019s dangerous. Sometimes it even files it away under \u201cpromotions,\u201d which is almost worse. It disappears into noise. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Second, delay.<\/strong> An alert that should take seconds takes minutes or hours. That\u2019s all the time an attacker needs to get a foothold. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>And third, complete evasion<\/strong>. In the worst cases, the email glides through untouched, as if the defences weren\u2019t even there.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That\u2019s the clever part. It\u2019s not just a <a href=\"https:\/\/certera.com\/blog\/phishing-attacks-explained-how-to-spot-and-prevent-online-scams\/\">phishing attack<\/a> anymore. It\u2019s a two-track attack on your emotions on one side, your machines on the other.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-the-delivery-chain-shows-how-much-phishing-has-evolved\">The Delivery Chain shows how much Phishing has Evolved<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The email came through <strong>SendGrid<\/strong>. It passed <strong>SPF<\/strong> and <strong>DKIM<\/strong>, and even though it <a href=\"https:\/\/certera.com\/blog\/what-is-dmarc-fail-how-to-know-and-fix-dmarc-failure-error\/\">failed <strong>DMARC<\/strong><\/a>, that was enough to get it into the inbox. The first link didn\u2019t go straight to the bad site either. It went through <strong>Microsoft Dynamics<\/strong>, which made the hop look legitimate.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Read Also:<\/strong> <a href=\"https:\/\/certera.com\/blog\/what-is-dkim-dmarc-and-spf-the-ultimate-guide-on-email-autentication-protocols\/\">What is DKIM, DMARC, and SPF?<\/a><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">From there, the attacker set up roadblocks. A <strong>CAPTCHA<\/strong> kept out crawlers and sandboxes. Only a real user would get through. On the other side was a <strong>Gmail login page<\/strong> with <strong>obfuscated JavaScript<\/strong> waiting to steal credentials.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Read Also:<\/strong> <a href=\"https:\/\/certera.com\/blog\/beware-new-phishing-attacks-exploit-googles-dkim-to-trick-gmail-users\/\">Beware: New Phishing Attacks Exploit Google\u2019s DKIM to Trick Gmail Users<\/a><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">They did not leave it at that. This phishing site retrieved IP, ASN, and geolocation information, discarding analysts and considering only the actual victims. A telemetry beacon was monitoring the sessions so that humans and bots could be distinguished.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Even the infrastructure nudges toward who may be behind it. The WHOIS information points the domain to Pakistan, and <strong>the beacon URLs also contain words in Urdu and Hindi<\/strong>. Not evidence, a clue.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Read Also:<\/strong> <a href=\"https:\/\/certera.com\/blog\/google-gemini-vulnerability-allows-ai-generated-phishing-via-hidden-html-prompts\/\">Google Gemini Vulnerability Allows AI-Generated Phishing via Hidden HTML Prompts<\/a><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The larger question is how stacked this is now. It is not only about deceiving people any longer. They are also after deceiving machines and AI. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Read Also:<\/strong> <a href=\"https:\/\/certera.com\/blog\/google-salesforce-breach-major-vishing-attack-that-exposed-2-5m-records\/\">Google Salesforce Breach: Major Vishing Attack That Exposed 2.5M Records<\/a><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That is the trend that malware is constructed in an attempt to destructively contaminate the tools used in the detection of these attacks. The consequence is an alternate form of arms race. Now you must protect your AI as well as your users against social engineering.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-conclusion\">Conclusion<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Phishing used to be simple. Now it\u2019s layered, AI-aware, and built to fool both people and machines. The defenders have to evolve just as fast because the attacks already have.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you want to stay ahead of these threats, contact us for <a href=\"https:\/\/certera.com\/services\">cybersecurity services<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Your email security is locked down? Do you think your AI-powered filters can catch anything hackers throw at you? A new phishing attack targeting Gmail users is so clever, it\u2019s not just designed to fool you. It\u2019s designed to fool the very AI that\u2019s supposed to protect you. This isn\u2019t your average &#8220;click here to<span class=\"morelink d-block mt-3\"><a href=\"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/\">Read More<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":3880,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[31],"tags":[751,750],"class_list":["post-3877","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyber-attack","tag-ai-prompt-injection","tag-gmail-phishing-attack","entry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v24.6 (Yoast SEO v27.3) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>New Gmail Phishing Attack: Prompt Injection Against AI<\/title>\n<meta name=\"description\" content=\"This attack highlights an evolution in phishing tactics. Attackers are now building AI-aware threats, attempting to poison the very tools meant to defend against them.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Gmail Phishing with Prompt Injection: Tricks Humans and AI. Are You Ready?\" \/>\n<meta property=\"og:description\" content=\"This attack highlights an evolution in phishing tactics. Attackers are now building AI-aware threats, attempting to poison the very tools meant to defend against them.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/\" \/>\n<meta property=\"og:site_name\" content=\"EncryptedFence by Certera - Web &amp; Cyber Security Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/certeraLLC\/\" \/>\n<meta property=\"article:published_time\" content=\"2025-08-26T08:58:38+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-08-26T08:58:39+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/08\/gmail-phishing-attack.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"960\" \/>\n\t<meta property=\"og:image:height\" content=\"620\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Janki Mehta\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@certera_llc\" \/>\n<meta name=\"twitter:site\" content=\"@certera_llc\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Janki Mehta\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/\"},\"author\":{\"name\":\"Janki Mehta\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/person\\\/e5a476aa90d9e02260ebfe4b0bf046b7\"},\"headline\":\"Gmail Phishing with Prompt Injection: Tricks Humans and AI. Are You Ready?\",\"datePublished\":\"2025-08-26T08:58:38+00:00\",\"dateModified\":\"2025-08-26T08:58:39+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/\"},\"wordCount\":870,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/08\\\/gmail-phishing-attack.webp\",\"keywords\":[\"AI Prompt Injection\",\"Gmail Phishing Attack\"],\"articleSection\":[\"Cyber Attack\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/#respond\"]}],\"copyrightYear\":\"2025\",\"copyrightHolder\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/\",\"name\":\"New Gmail Phishing Attack: Prompt Injection Against AI\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/08\\\/gmail-phishing-attack.webp\",\"datePublished\":\"2025-08-26T08:58:38+00:00\",\"dateModified\":\"2025-08-26T08:58:39+00:00\",\"description\":\"This attack highlights an evolution in phishing tactics. Attackers are now building AI-aware threats, attempting to poison the very tools meant to defend against them.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/#primaryimage\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/08\\\/gmail-phishing-attack.webp\",\"contentUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/08\\\/gmail-phishing-attack.webp\",\"width\":960,\"height\":620,\"caption\":\"Gmail Phishing with Prompt Injection\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/certera.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Gmail Phishing with Prompt Injection: Tricks Humans and AI. Are You Ready?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/\",\"name\":\"EncryptedFence by Certera - Web & Cyber Security Blog\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"},\"alternateName\":\"Certera's EncryptedFence Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/certera.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\",\"name\":\"Certera\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-encryptedfence.svg\",\"contentUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-encryptedfence.svg\",\"caption\":\"Certera\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/certeraLLC\\\/\",\"https:\\\/\\\/x.com\\\/certera_llc\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/certera-llc\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/person\\\/e5a476aa90d9e02260ebfe4b0bf046b7\",\"name\":\"Janki Mehta\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"caption\":\"Janki Mehta\"},\"description\":\"Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web\\\/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.\",\"sameAs\":[\"https:\\\/\\\/certerassl.com\\\/\"],\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/author\\\/certerabguser\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"New Gmail Phishing Attack: Prompt Injection Against AI","description":"This attack highlights an evolution in phishing tactics. Attackers are now building AI-aware threats, attempting to poison the very tools meant to defend against them.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/","og_locale":"en_US","og_type":"article","og_title":"Gmail Phishing with Prompt Injection: Tricks Humans and AI. Are You Ready?","og_description":"This attack highlights an evolution in phishing tactics. Attackers are now building AI-aware threats, attempting to poison the very tools meant to defend against them.","og_url":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/","og_site_name":"EncryptedFence by Certera - Web &amp; Cyber Security Blog","article_publisher":"https:\/\/www.facebook.com\/certeraLLC\/","article_published_time":"2025-08-26T08:58:38+00:00","article_modified_time":"2025-08-26T08:58:39+00:00","og_image":[{"width":960,"height":620,"url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/08\/gmail-phishing-attack.webp","type":"image\/jpeg"}],"author":"Janki Mehta","twitter_card":"summary_large_image","twitter_creator":"@certera_llc","twitter_site":"@certera_llc","twitter_misc":{"Written by":"Janki Mehta","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/#article","isPartOf":{"@id":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/"},"author":{"name":"Janki Mehta","@id":"https:\/\/certera.com\/blog\/#\/schema\/person\/e5a476aa90d9e02260ebfe4b0bf046b7"},"headline":"Gmail Phishing with Prompt Injection: Tricks Humans and AI. Are You Ready?","datePublished":"2025-08-26T08:58:38+00:00","dateModified":"2025-08-26T08:58:39+00:00","mainEntityOfPage":{"@id":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/"},"wordCount":870,"commentCount":0,"publisher":{"@id":"https:\/\/certera.com\/blog\/#organization"},"image":{"@id":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/#primaryimage"},"thumbnailUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/08\/gmail-phishing-attack.webp","keywords":["AI Prompt Injection","Gmail Phishing Attack"],"articleSection":["Cyber Attack"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/#respond"]}],"copyrightYear":"2025","copyrightHolder":{"@id":"https:\/\/certera.com\/blog\/#organization"}},{"@type":"WebPage","@id":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/","url":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/","name":"New Gmail Phishing Attack: Prompt Injection Against AI","isPartOf":{"@id":"https:\/\/certera.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/#primaryimage"},"image":{"@id":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/#primaryimage"},"thumbnailUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/08\/gmail-phishing-attack.webp","datePublished":"2025-08-26T08:58:38+00:00","dateModified":"2025-08-26T08:58:39+00:00","description":"This attack highlights an evolution in phishing tactics. Attackers are now building AI-aware threats, attempting to poison the very tools meant to defend against them.","breadcrumb":{"@id":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/#primaryimage","url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/08\/gmail-phishing-attack.webp","contentUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/08\/gmail-phishing-attack.webp","width":960,"height":620,"caption":"Gmail Phishing with Prompt Injection"},{"@type":"BreadcrumbList","@id":"https:\/\/certera.com\/blog\/gmail-phishing-with-prompt-injection-tricks-humans-and-ai\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/certera.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Gmail Phishing with Prompt Injection: Tricks Humans and AI. Are You Ready?"}]},{"@type":"WebSite","@id":"https:\/\/certera.com\/blog\/#website","url":"https:\/\/certera.com\/blog\/","name":"EncryptedFence by Certera - Web & Cyber Security Blog","description":"","publisher":{"@id":"https:\/\/certera.com\/blog\/#organization"},"alternateName":"Certera's EncryptedFence Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/certera.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/certera.com\/blog\/#organization","name":"Certera","url":"https:\/\/certera.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/certera.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2023\/08\/logo-encryptedfence.svg","contentUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2023\/08\/logo-encryptedfence.svg","caption":"Certera"},"image":{"@id":"https:\/\/certera.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/certeraLLC\/","https:\/\/x.com\/certera_llc","https:\/\/www.linkedin.com\/company\/certera-llc\/"]},{"@type":"Person","@id":"https:\/\/certera.com\/blog\/#\/schema\/person\/e5a476aa90d9e02260ebfe4b0bf046b7","name":"Janki Mehta","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","caption":"Janki Mehta"},"description":"Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web\/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.","sameAs":["https:\/\/certerassl.com\/"],"url":"https:\/\/certera.com\/blog\/author\/certerabguser\/"}]}},"_links":{"self":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3877","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/comments?post=3877"}],"version-history":[{"count":2,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3877\/revisions"}],"predecessor-version":[{"id":3883,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3877\/revisions\/3883"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/media\/3880"}],"wp:attachment":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/media?parent=3877"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/categories?post=3877"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/tags?post=3877"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}