TL;DR
Google Gemini voice assistant on Android vulnerable to poisoned notifications; Microsoft 365 Android apps exposed tokens via disabled security flag; Redis RCE (CVE-2026-23479) patched after 2-year dormancy. Critical infrastructure (fuel tank systems) targeted; new HTTP/2 DoS attack crashes servers in seconds.
Executive Summary
- Google Gemini's voice assistant on Android accepts malicious commands hidden in notifications from WhatsApp, Slack, and other messaging apps, enabling account compromise and unauthorized actions.
- Microsoft 365 Android apps (Word, PowerPoint, Excel) disabled a production security flag, allowing any app to steal authentication tokens and access email, files, and OneDrive.
- CISA, FBI, NSA, and DOE warn of active cyberattacks targeting automatic tank gauge (ATG) systems monitoring fuel and liquid storage across critical infrastructure.
- A new HTTP/2-based denial-of-service attack can crash web servers within seconds using a single machine.
- An autonomous AI tool discovered a 2-year-old remote code execution flaw in Redis (CVE-2026-23479) affecting authenticated users.
Top Threats Today
1. Google Gemini Prompt Injection via Malicious Notifications
Severity: HIGH Affected: Technology
A poisoned notification from WhatsApp, Slack, SMS, Signal, Instagram, or Messenger could hijack Google Gemini's voice assistant on Android ⚠[1]. The vulnerability allows attackers to inject malicious commands into notifications, which Gemini processes as legitimate voice input, enabling opening connected windows, sending fake messages, initiating Zoom calls, or poisoning the assistant's long-term memory [1][2].
Sources:[1] The Hacker News[2] Dark Reading
Recommended Action
- Immediately review and disable Google Gemini on Android devices if not actively required for business operations.
- Educate users to avoid clicking notification-based calls to action from messaging apps, especially those requesting voice assistant actions.
- Monitor Google Security Advisories for a patch and deploy immediately upon availability.
- Consider restricting notification permissions for messaging apps in mobile device management (MDM) policies.
2. Microsoft 365 Android Apps Expose Authentication Tokens
Severity: HIGH Affected: Technology
A disabled security check in production builds of Microsoft 365 Android apps (Word, PowerPoint, Excel) removed restrictions on account-token sharing [1]. Any app installed on the same device can now request and receive a signed-in user's authentication token, granting access to email, files, OneDrive, and other Microsoft 365 services [1][2].
Sources:[1] The Hacker News[2] Dark Reading
Recommended Action
- Patch Microsoft 365 Android apps to the latest version immediately upon release.
- Audit app permissions on corporate Android devices and disable installation of unnecessary third-party applications.
- Enable multi-factor authentication (MFA) across all Microsoft 365 accounts to limit token-only compromise impact.
- Monitor Microsoft Security Advisories for an official patch and deployment timeline.
3. Critical Infrastructure Fuel Tank Systems Under Active Attack
Severity: HIGH Affected: Energy
CISA, the FBI, the NSA, the Department of Energy, and other U.S. government partners are warning that hackers are actively targeting internet-exposed automatic tank gauge (ATG) systems used to monitor fuel and liquid storage tanks across critical infrastructure sectors [1].
Sources:[1] BleepingComputer
Recommended Action
- Immediately audit all ATG systems and remove internet exposure; move to air-gapped or VPN-protected management networks.
- Implement network segmentation isolating ATG systems from corporate networks and external connectivity.
- Deploy monitoring and intrusion detection on any ATG system that must remain networked.
- Review CISA alerts for specific IOCs and apply blocking rules to firewalls and DNS.
4. HTTP/2 Bomb Denial-of-Service Attack Crashes Servers Rapidly
Severity: HIGH Affected: Technology
A new denial-of-service attack dubbed HTTP/2 Bomb can be launched from a single machine and crash web servers in under a minute [1].
Sources:[1] BleepingComputer
Recommended Action
- Update HTTP/2 implementations on all web servers and reverse proxies to the latest patched versions.
- Enable rate limiting and HTTP/2 connection limits in load balancers and firewalls.
- Monitor for suspicious HTTP/2 traffic patterns; configure alerts for rapid connection exhaustion.
- Review vendor advisories (nginx, Apache, IIS, F5, Cloudflare) for HTTP/2 hardening recommendations.
5. Redis Remote Code Execution (CVE-2026-23479) Patched After 2 Years
Severity: HIGH Affected: Technology
An autonomous AI tool discovered a use-after-free vulnerability in Redis's blocking-client code that allows an authenticated user to run arbitrary OS commands on ⚠ the host machine [1]. The flaw, tracked as CVE-2026-23479, was introduced years ago and has been patched ⚠[1].
Sources:[1] The Hacker News
Recommended Action
- Upgrade Redis to the latest patched version immediately, prioritizing production instances.
- Restrict Redis access to authenticated users only; disable anonymous or default credentials.
- Implement network segmentation and firewall rules limiting Redis access to trusted application hosts only.
- Monitor Redis logs for unauthorized authentication attempts or commands.
Today’s Action Checklist
- ☐ URGENT: Apply Microsoft 365 Android app patches and verify all deployments via MDM; enable MFA across affected accounts.
- ☐ URGENT: Audit and remediate internet-exposed ATG systems; implement air-gapping or VPN protection for critical infrastructure fuel monitoring.
- ☐ HIGH: Patch or disable Google Gemini on Android devices; restrict notification permissions for messaging apps.
- ☐ HIGH: Update HTTP/2 implementations on web servers and configure connection/rate limits.
- ☐ HIGH: Upgrade Redis to patched version; audit authentication and network access controls.