Resources

PromptSpy Android Malware Abuses Gemini AI to Automate Recent-Apps Persistence

Cybersecurity researchers have discovered what they say is the first Android malware that abuses Gemini, Google’s generative artificial intelligence (AI) chatbot, as part of its execution flow and achieves persistence.
The malware has been codenamed PromptSpy by ESET. The malware is equipped to capture lockscreen data, block uninstallation efforts, gather device information, take screenshots,

Related resources

3 September 2025

Malicious npm Packages Exploit Ethereum Smart Contracts to Target Crypto Developers

Cybersecurity researchers have discovered two new malicious packages on the npm registry that make use of smart contracts for the Ethereum blockchain to carry out malicious actions on compromised systems, […]

9 March 2026

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Cybersecurity researchers have discovered a malicious npm package that masquerades as an OpenClaw installer to deploy a remote access trojan (RAT) and steal sensitive data from compromised hosts. The package, […]

7 February 2026

German Agencies Warn of Signal Phishing Targeting Politicians, Military, Journalists

Germany’s Federal Office for the Protection of the Constitution (aka Bundesamt für Verfassungsschutz or BfV) and Federal Office for Information Security (BSI) have issued a joint advisory warning of a […]

Malicious AI

TR-26-0080 (Aida64 Engineer Güvenlik Zafiyeti)

Resources

PromptSpy Android Malware Abuses Gemini AI to Automate Recent-Apps Persistence

Related resources

Malicious npm Packages Exploit Ethereum Smart Contracts to Target Crypto Developers

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

German Agencies Warn of Signal Phishing Targeting Politicians, Military, Journalists

Links

Enterprise Solutions

SMB Solutions

Contact Us

Follow Us