{"id":264001,"date":"2026-06-04T10:16:00","date_gmt":"2026-06-04T14:16:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/06\/04\/malicious-whatsapp-slack-alerts-could-have-exposed-millions-of-android-users\/"},"modified":"2026-06-04T10:30:24","modified_gmt":"2026-06-04T14:30:24","slug":"malicious-whatsapp-slack-alerts-could-have-exposed-millions-of-android-users","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/06\/04\/malicious-whatsapp-slack-alerts-could-have-exposed-millions-of-android-users\/","title":{"rendered":"Malicious WhatsApp, Slack Alerts Could Have Exposed Millions of Android Users"},"content":{"rendered":"<p><a href=\"https:\/\/www.techrepublic.com\/article\/news-whatsapp-slack-alerts-could-manipulate-gemini-android\/\">Malicious WhatsApp, Slack Alerts Could Have Exposed Millions of Android Users<\/a><\/p>\n<p><a href=\"https:\/\/www.techrepublic.com\/article\/news-whatsapp-slack-alerts-could-manipulate-gemini-android\/\">https:\/\/www.techrepublic.com\/article\/news-whatsapp-slack-alerts-could-manipulate-gemini-android\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-04 10:16:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.techrepublic.com\">www.techrepublic.com<\/a><\/p>\n<p>A routine phone notification could have become an attack path for Google Gemini on Android, according to new research from SafeBreach.<\/p>\n<p>The now-mitigated issue involved crafted alerts from WhatsApp, Slack, SMS, Signal, Instagram, and Messenger. SafeBreach said the alerts could influence how Gemini handled notification text, alter spoken responses, impersonate trusted contacts, trigger connected tools, and poison long-term memory.<\/p>\n<p>Google addressed the issue with server-side content-classifier improvements. Researchers found no evidence of real-world exploitation.<\/p>\n<h2 id=\"researchers-found-a-notification\">Researchers found a notification-based prompt injection path<\/h2>\n<p>SafeBreach Labs said its researchers found the issue while testing Gemini\u2019s Android Utilities feature, which can read and respond to phone notifications. The flaw affected how Gemini processed untrusted notification text from messaging and social apps.<\/p>\n<p>The research was published on June 3 by Or Yair, security research team lead at SafeBreach. It followed the company\u2019s earlier \u201cInvitation Is All You Need\u201d work, which showed how malicious Google Calendar invites could manipulate Gemini.<\/p>\n<p>\u201cThe main purpose of Fake Context Alignment is to create a dual illusion: presenting a legitimate authorization scenario to Gemini\u2019s behind-the-scenes security mechanisms, while presenting a completely different, benign scenario to the victim,\u201d Yair wrote in the SafeBreach report.<\/p>\n<p>The Hacker News reported that the attack did not require a malicious app on the victim\u2019s phone. An attacker only needed to send a crafted notification that Gemini might later summarize or read aloud.<\/p>\n<h2 id=\"fake-context-alignment-bypassed\">Fake Context Alignment bypassed newer guardrails<\/h2>\n<p>Google has already added protections after the earlier calendar-based research, but SafeBreach said Yair found a new bypass called Fake Context Alignment.<\/p>\n<p>The technique created two versions of the same interaction. One looked like a legitimate consent to Gemini\u2019s security checks. The other one sounded harmless to the&#8230;<br \/>\n<br \/><a href=\"https:\/\/www.techrepublic.com\/article\/news-whatsapp-slack-alerts-could-manipulate-gemini-android\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Malicious WhatsApp, Slack Alerts Could Have Exposed Millions of Android Users https:\/\/www.techrepublic.com\/article\/news-whatsapp-slack-alerts-could-manipulate-gemini-android\/ Publish Date: 2026-06-04&#8230;<\/p>\n","protected":false},"author":1,"featured_media":264003,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/assets.techrepublic.com\/uploads\/2026\/06\/Untitled-design-35-1.png?f=jpeg","fifu_image_alt":"","footnotes":""},"categories":[46],"tags":[89,70,35,57],"class_list":["post-264001","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-android","tag-flaw","tag-google","tag-hacker","tag-security"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/264001"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=264001"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/264001\/revisions"}],"predecessor-version":[{"id":264004,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/264001\/revisions\/264004"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/264003"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=264001"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=264001"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=264001"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}