Summary:
ESET researchers have discovered “PromptSpy,” the first Android malware using generative AI to enhance its functionality. Deployed primarily to grant hackers remote access via a VNC module, PromptSpy utilizes Google’s Gemini chatbot to interpret the device’s user interface with natural language prompts. This innovative approach allows the malware to adapt to varying devices and layouts, circumventing common failures associated with UI navigation.
While PromptSpy is not yet documented in ESET’s telemetry, indications suggest it may support real-world attacks, with discovered domains attempting to mimic Chase Bank. Notably, the malware can intercept sensitive information like lockscreen PINs and block uninstallation efforts through invisible overlays, forcing users to reboot in safe mode.
As a proof of concept, PromptSpy exemplifies how malware can leverage generative AI for dynamic interactions, marking a troubling evolution in the cybersecurity landscape. This discovery follows ESET’s previous work on PromptLock, another generative AI-powered malware.
