Scammers Used Gemini AI to Help Build Spam Messages, Google Says

Artificial intelligence, once hailed as a productivity booster, has become a double‑edged sword for cybercriminals. The recent lawsuit filed by Google alleges that the Chinese‑linked Outsider Enterprise exploited Google’s Gemini chatbot to automatically generate the HTML, JavaScript, and server‑side code needed for phishing sites. By feeding prompts that described the desired malicious behavior, the scammers bypassed the manual coding step that traditionally limited the speed of large‑scale campaigns. This case illustrates how generative AI can lower the technical barrier for sophisticated fraud, enabling even low‑skill actors to launch professional‑grade attacks.

The operation unleashed more than 2 million SMS messages to Android users across the United States during a two‑week window in May. Each text masqueraded as a warning from Google or a package‑tracking alert, directing recipients to one of roughly 9,000 counterfeit domains that hosted over 1 million fraudulent URLs. Once a victim entered personal data, the information was harvested for identity theft or financial gain. Google worked with major carriers—AT&T, T‑Mobile, and Verizon—to intercept and block the messages, demonstrating a rapid, coordinated technical response.

The fallout from this AI‑enhanced spam campaign signals a shift in the threat landscape that will pressure regulators and industry groups to develop unified defenses. Telecom operators are now forced to integrate AI‑driven detection tools, while platform providers must tighten abuse monitoring for their own models. Law‑enforcement agencies are likely to pursue more aggressive cross‑border actions against the infrastructure behind such operations. As generative AI tools become more accessible, the cost of launching mass phishing attacks will continue to drop, making proactive collaboration the only viable safeguard.