PromptSpy malware uses AI tools and Gemini to hijack Android devices, locking apps while spying on every action secretly ...

A convincing lookalike of the popular Huorong Security antivirus has been used to deliver ValleyRAT, a sophisticated Remote Access Trojan (RAT) built on the Winos4.0 framework, to users who believed ...

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...

First Android malware uses generative AI to maintain persistence, enabling remote device control and blocking removal attempts..

ESET has uncovered PromptSpy, Android malware that uses Gemini to stay running, spy on devices and make removal attempts more difficult.

A new Android malware implant using Google Gemini to perform persistence tasks was discovered on VirusTotal and analyzed by ESET ...

The PromptSpy Android malware, created by Chinese developers, uses Gemini AI at runtime to achieve persistence on devices.

Researchers have discovered the first known Android malware to use generative AI in its execution flow, using Google's Gemini ...

A newly-uncovered malware targeting the Android operating system seems to exploit Google’s Gemini GenAI tool to help it maintain persistence.

PromptSpy Android malware abuses Google Gemini to analyze screens, automate persistence, block removal, and enable VNC-based ...

ESET researchers have discovered PromptSpy, the first known Android malware to abuse generative AI in its execution flow to achieve persistence. It is the first time generative AI has been deployed in ...

ESET researchers discover PromptSpy, the first known Android malware to abuse generative AI in its execution flow.