Close Menu
    X (Twitter) LinkedIn
    CapitalAI DailyCapitalAI Daily
    X (Twitter) LinkedIn
    • Intelligence
    • Markets & Investments
    • Big Tech & AI
    • AI & Cybercrime
    • Jobs & AI
    • Banks
    • Crypto
    Monday, July 6
    CapitalAI DailyCapitalAI Daily
    Home»AI & Cybercrime»Google Says China-Linked Hackers Are Misusing Gemini To Probe US Targets

    Google Says China-Linked Hackers Are Misusing Gemini To Probe US Targets

    By Henry KanapiFebruary 13, 20262 Mins Read
    Share
    Twitter LinkedIn

    Google says state-sponsored hackers are trying to use its AI chatbot to sharpen cyberattacks against American targets.

    In its latest Google Threat Intelligence Report, the company says that China-linked threat actors have been prompting Gemini to help with reconnaissance, phishing campaigns and even vulnerability testing against specific US-based organizations.

    According to the report, state-backed groups are attempting to use Gemini across multiple stages of their operations, including command-and-control development and data exfiltration. Google says some actors are also experimenting with so-called “agentic” AI capabilities, assigning the model expert personas or asking it to perform automated security analysis.

    Google says China-based threat actor APT31 took a highly structured approach, prompting Gemini with an expert cybersecurity persona to automate the analysis of system vulnerabilities and come up with targeted testing plans.

    “The PRC-based threat actor fabricated a scenario, in one case trialing Hexstrike MCP tooling, and directing the model to analyze remote code execution (RCE), web application firewall (WAF) bypass techniques, and SQL injection test results against specific US-based targets. This automated intelligence gathering to identify technological vulnerabilities and organizational defense weaknesses.”

    Google notes that this kind of activity blurs the line between routine cybersecurity queries and targeted malicious reconnaissance.

    In another case, a PRC-based actor labeled UNC795 relied heavily on Gemini throughout its attack lifecycle. The group used the tool to troubleshoot code, conduct research and generate technical capabilities for intrusion activity. Google says the actor engaged with Gemini multiple days a week.

    The company says its safety systems were triggered during these interactions and that Gemini did not comply with requests to create policy-violating capabilities. Google also says it has disabled the assets associated with the identified actors.

    Disclaimer: Opinions expressed at CapitalAI Daily are not investment advice. Investors should do their own due diligence before making any decisions involving securities, cryptocurrencies, or digital assets. Your transfers and trades are at your own risk, and any losses you may incur are your responsibility. CapitalAI Daily does not recommend the buying or selling of any assets, nor is CapitalAI Daily an investment advisor. See our Editorial Standards and Terms of Use.

    China Gemini Google Hacking
    Previous ArticleVC Says OpenAI Facing Consumer Headwinds As Gemini Grows to Over 50% of ChatGPT’s Monthly Active Users
    Next Article Anthropic Raises $30,000,000,000 As Run-Rate Revenue Grew 10x Annually Over Three Years

    Read More

    Warren Buffett’s Berkshire Hathaway Pouring $10,000,000,000 Into Alphabet As Tech Giant Raises $80,000,000,000 for AI Infrastructure

    June 1, 2026

    Atreides Management’s Gavin Baker Reveals ‘Surprising’ Concentration of AI Economic Returns – Here’s Where the Money Is Going

    May 22, 2026

    Dan Ives Warns Big Tech Is ‘Shooting Itself in the Foot,’ Says AI Job Cut Talk Could Trigger Regulation and Hand China the Win

    May 22, 2026

    Altimeter Dumps 100% Stake in Alphabet, Pours $450,874,000 Into CoreWeave, ARM and Two Other AI Plays

    May 20, 2026

    AI Voice Cloning Scams Draining up to $15,000 From Victims – 77% of Those Targeted Lost Money: McAfee

    May 18, 2026

    Billionaire Ray Dalio Pours $1,631,870,000 Into Google, Amazon, Nvidia, Micron and More, Dumps AMD and Oracle

    May 18, 2026
    X (Twitter) LinkedIn
    • About
    • Author
    • Editorial Standards
    • Contact Us
    • Privacy Policy
    • Terms of Service
    • Cookie Policy
    © 2025 CapitalAI Daily. All Rights Reserved.

    Type above and press Enter to search. Press Esc to cancel.