Security researchers have identified PromptSpy, the first Android malware family that integrates generative AI directly into its operational flow. Discovered by ESET, this malicious software utilizes Google's Gemini model to dynamically determine persistence methods across diverse device manufacturers. The malware sends screen XML data to Gemini, which responds with JSON-formatted instructions executed via Accessibility Services until app pinning is confirmed.
This AI-driven approach solves the fragmentation challenge of different Android implementations without requiring complex scripting. Beyond its novel persistence mechanism, PromptSpy functions as comprehensive spyware with a built-in VNC module enabling remote screen control. It can intercept credentials, capture screenshots, record activities, and resist removal through invisible interface overlays.
While ESET has not observed the malware in their telemetry, distribution through dedicated domains and bank impersonation pages suggests potential real-world deployment. This development parallels broader trends of threat actors adopting generative AI across all attack stages.
Read more...