Google Gemini prompt injection, Microsoft 365 token theft, Redis RCE patched

High-risk briefing covering multiple active and high-severity threats: Android voice-assistant prompt-injection (Google Gemini), Microsoft 365 Android token-exposure, active attacks against fuel tank ATG systems, a rapid HTTP/2 'bomb' DoS, and a patched Redis RCE (CVE-2026-23479). Immediate mitigations recommended include patching affected software, disabling or restricting vulnerable features, enforcing MFA and MDM controls, and segmenting and hardening critical infrastructure networks.