Skip to main content
RISX by Kncok — Online Financial Fraud Alerts in IndiaRISX

Online Financial Fraud Alerts in India

Public fraud alerts from Indian national media, explained in plain language

•by Kncok
Email a source
HomeCheckSafety
AlertsCluesTrends
AboutDigest
CheckSafetyAlerts
RISX by Kncok

Public online financial fraud alerts from Indian national media, explained in plain language — check a clue, browse reports, search shared numbers and links.

AKncokinitiative

Explore

  • Contact & sources
  • About RISX
  • Why trust this
  • Editorial standards
  • Weekly digest
  • Preferences

Legal

  • Privacy Policy
  • Advertising Disclosure
  • Terms of Use
  • Disclaimer
  • Grievance & Removals
© 2026 RISX by Kncok•All rights reserved•Quick jump ⌘K/Ctrl+K
Public fraud alerts for India
Why trust this•Editorial•Privacy•Ads•Terms•Disclaimer•Grievance•Digest•Prefs••Contact

© 2026 RISX by Kncok · All rights reserved

Public fraud alerts for India

Jump anywhere: ⌘K / Ctrl+KTip: keyboard menu ⌘K / Ctrl+K on desktop

Email a source
Google issues red alert as new cyber attack targets Gmail users using AI with 'indirect prompt injections' | Fraud Alert | RISX by Kncok
  1. Home
  2. Alerts
  3. Google issues red alert as new cyber attack targets Gmail users using AI with 'indirect prompt injections'

Google issues red alert as new cyber attack targets Gmail users using AI with 'indirect prompt injections'

VerifiedAuthentic
Source: Hindustan Times

This page summarises the reported incident in plain language — what happened, who may be affected, and what to watch for before trusting a message, call, or link.

This is a summary of a reported incident, not a verdict. Read the disclaimer.

If this just happened to you

Do these steps in order. Speed matters.

  1. Stop the call or chat. Do not click more links or send money.
  2. Call your bank's official helpline (on your card or the bank website) and ask to block cards and freeze transfers.
  3. Call 1930 within 24 hours and file a complaint at cybercrime.gov.in.
  4. Save evidence — screenshots, numbers, links, and messages.

More reporting channels and helplines are below. Full reporting channels & helplines →

Alert summary (plain language)

Google has issued a warning about a new cybersecurity threat called 'indirect prompt injections' targeting its 1.8 billion Gmail users. Unlike direct attacks, hackers hide malicious instructions in em...

Key details

Published on

19 August 2025 at 06:00 pm

Reported by

Hindustan Times

Reported

email

Target profile

gmail user

Sources

RISX summarises public reporting into plain-language alerts. Always check the original source — wording and dates may change after publication.

Alert last updated from feed: 19 August 2025 at 06:00 pm

  • Hindustan Times

    https://www.hindustantimes.com/trending/google-issues-red-alert-as-new-cyber-attack-targets-gmail-users-using-ai-with-indirect-prompt-injections-101755600288240.html

Common scam keywords

Words and phrases scammers use in this kind of scam. If you see them in a message, treat it as a .

indirect prompt injectionsai-based phishinggemini assistant exploithidden commandsemail scampassword theftai manipulationcalendar invite exploitdocument-embedded threats

Topics

artificial intelligencesocial engineeringcredential theftemail phishingemerging threatgoogle warningdata breach riskauthentication bypass

(numbers, IDs, links, domains)

Specific things tied to this scam. Tap any item to see other alerts where it appears.

Google Gemini AI assistantGmailemail-embedded commandscalendar invitesdocuments with hidden prompts

What to do for this type of scam

Use this if you got similar messages or may have already lost money. Check red flags first, then first-hour steps.

  • Red flags for this scam type
  • If affected — first steps
  • Official reporting channels & helplines

Red flags this scam usually shows

If a message, call, or page involves any of these, treat it as suspicious — even if it looks like the alert above.

  • Pushes you to act in a hurry

    Real organizations give you time. Threats like 'your account will be closed in 30 minutes' are designed to panic you into mistakes.

  • Asks for OTP, PIN, CVV, or password

    Banks, UPI apps, government offices, and police never ask for these. Anyone asking is trying to steal your money.

  • Sends you a link or APK to install

    Tapping unknown links or installing unverified apps can give scammers full access to your phone and bank accounts.

  • Asks for an advance, processing fee, or 'refund tax'

    Real refunds, prizes, jobs, or loans never require you to pay first. If you must pay to receive something, it is a scam.

  • Offer sounds too good to be true

    Huge cashback, guaranteed jobs, lottery wins, or sky-high returns are classic bait. If it feels unreal, it is.

Time-sensitive

If you were affected by this scam

First-hour steps — the crisis box above covers the emergency call to 1930.

  1. 1

    Stop the call or chat right now

    Hang up, leave the chat, and do not click any more links. Every extra minute is more risk. Take a breath; you are not alone in this.

  2. 2

    Block your card and freeze the account

    Call your bank's official helpline (printed on the back of your card or on the bank's website) and ask them to block the card and temporarily freeze online transactions. Do not call numbers a stranger gave you.

  3. 3

    Change passwords and revoke device access

    Change passwords for net banking, UPI apps, and email. In your UPI app, remove any 'linked devices' you do not recognize. Turn on two-factor authentication where possible.

  4. 4

    Report to the National Cyber Crime Helpline within 24 hours

    Call 1930 or file a complaint at cybercrime.gov.in. Reporting within the first 24 hours gives the best chance of freezing the money before it moves.

    Open cybercrime.gov.in

Official reporting channels

Use one of these official channels. Early reporting maximises recovery potential.

  • National Cyber Crime Helpline

    Start here

    First call for any online financial fraud. Operators help you file a complaint and can request banks to freeze the recipient account.

    Call 1930Open website24x7

  • cybercrime.gov.in

    Official portal of the Government of India to report cyber crime, including financial fraud, social media misuse, and crimes against women and children.

    Open websiteOnline, anytime

  • Sanchar Saathi - Chakshu

    Report suspicious calls and SMS that look like fraud. Run by the Department of Telecommunications.

    Open websiteOnline, anytime

Official channels only. RISX is independent and does not receive payment for these listings.

Share a fraud warning

Forward a concise, factual warning. Colleagues and family who do not follow fraud news still need plain context.

Ready to send

Takes about 30 seconds

Scam alert: AI-Based Gmail Phishing via Indirect Prompt Injections Google has issued a warning about a new cybersecurity threat called 'indirect prompt injections' targeting its 1.8 billion Gmail users. What to do: • Never share OTP, PIN, or passwords with anyone. • Do not click unknown links or install apps a stranger asks you to. • If you think you’ve been targeted, call 1930 within 24 hours. More details and how to protect yourself: https://fraudrisk.net/alerts/691a2a1c05c839e19eed634c

Share on WhatsApp
This alert summarises a publicly reported incident — it is not a verdict. If something here is wrong, outdated, or unfair, report an error or request removal. See our Grievance Redressal process.
Methodology & sourcesWhere alerts come from, how we verify sources, and what we do not claim.Read