Security researchers have demonstrated the first physical-world attack executed via generative AI, hijacking Google's Gemini to control smart home devices through poisoned calendar invites. The exploit reveals critical vulnerabilities in AI agents as they gain real-world control, forcing Google to accelerate new defenses against 'indirect prompt injection' attacks.