Technology
ESET Uncovers PromptSpy: First Android Malware Using Generative AI
A new Android malware known as PromptSpy has been identified by ESET Research as the first threat to utilize generative artificial intelligence in its operations. This advanced malware is capable of capturing lockscreen data, blocking uninstallation attempts, gathering device information, and recording screen activity as video. PromptSpy represents a significant step in the evolution of mobile threats, following the discovery of PromptLock last year, which was the first AI-driven ransomware.
In its analysis, ESET emphasizes that this campaign appears to be financially motivated, primarily targeting users in Argentina. The conclusion regarding its financial motivations stems from clues related to language localization and the distribution methods employed.
How PromptSpy Operates
According to ESET, the malware utilizes a tool called Gemini to provide detailed instructions for making the malicious application, named MorganArg, appear “locked” in the recent apps list. This feature, often represented by a padlock icon, prevents the app from being easily dismissed or terminated by the system.
Lukáš Štefanko, the researcher who discovered PromptSpy, noted that generative AI allows the malware to adapt to various devices, layouts, and operating system versions. This adaptability significantly broadens the potential victim pool. The primary function of PromptSpy is to deploy a built-in Virtual Network Computing (VNC) module, granting operators remote access to compromised devices.
Beyond remote access, PromptSpy also exploits Accessibility Services to obstruct uninstallation through invisible overlays. This capability, combined with its other features, makes it a particularly dangerous threat.
Distribution and Removal Challenges
Importantly, PromptSpy has never been available through the Google Play Store. Instead, it is distributed via a dedicated website, posing a risk to users who may inadvertently download it. ESET has communicated its findings to Google, and fortunately, Android users benefit from automatic protection against known versions of this malware through Google Play Protect.
The only method for removing the MorganArg app is to boot the device into Safe Mode, as standard uninstallation procedures are blocked. This presents a significant challenge for affected users, underscoring the importance of cybersecurity awareness and caution regarding app installations.
ESET’s discovery of PromptSpy highlights the evolving landscape of mobile threats. As malware increasingly incorporates advanced technologies like generative AI, users must remain vigilant to protect their devices and personal information.
Meta Plans Major Layoffs as AI Costs Surge
Alberta’s Referendum Could Pave Way for U.S. Statehood
Minooka District 201 Plans Enhanced Bilingual Support for Students
Canmore Approves Multiple Development Permits for New Projects
Remembering Bradly Castillo Shearsmith: A Life of Friendship and Joy
BIS Urges Watchdogs to Integrate Synthetic Risk Transfers in Stress Tests
Teva Transforms: Shifting Focus from Generics to Branded Success
Apple Launches AirPods Max 2 with Enhanced Audio Features
Ontario Ends Funding for Seven Supervised Injection Sites
Toyoake City Proposes Daily Two-Hour Smartphone Use Limit
Pedestrian Fatally Injured in Esquimalt Collision on August 14
Dark Adventure Game “Bye Sweet Carole” Set for October Release
B.C. Review Reveals Urgent Need for Rare-Disease Drug Reforms
Konami Revives Iconic Metal Gear Solid Delta Ahead of Release
Jimmy Lai’s Defense Challenges Charges Under National Security Law
Victoria’s Pop-Up Shop Shines Light on B.C.’s Wolf Cull
Snapmaker U1 Color 3D Printer Redefines Speed and Sustainability
Apple Expands Self-Service Repair Program to Canada
-
Science8 months agoToyoake City Proposes Daily Two-Hour Smartphone Use Limit
-
Top Stories9 months agoPedestrian Fatally Injured in Esquimalt Collision on August 14
-
Technology8 months agoDark Adventure Game “Bye Sweet Carole” Set for October Release
-
Health9 months agoB.C. Review Reveals Urgent Need for Rare-Disease Drug Reforms
-
Technology9 months agoKonami Revives Iconic Metal Gear Solid Delta Ahead of Release
-
World8 months agoJimmy Lai’s Defense Challenges Charges Under National Security Law
-
Lifestyle9 months agoVictoria’s Pop-Up Shop Shines Light on B.C.’s Wolf Cull
-
Technology9 months agoSnapmaker U1 Color 3D Printer Redefines Speed and Sustainability
-
Technology9 months agoApple Expands Self-Service Repair Program to Canada
-
Technology9 months agoAION Folding Knife: Redefining EDC Design with Premium Materials
-
Technology9 months agoSolve Today’s Wordle Challenge: Hints and Answer for August 19
-
Business9 months agoGordon Murray Automotive Unveils S1 LM and Le Mans GTR at Monterey