March 3, 2026

Android Malware Exploits Gemini AI for Runtime Persistence and Stealthy Operations

Vaibhav February 20, 2026
Android-Malware-Exploits-Gemini-AI-for-Runtime-Persistence-and-Stealthy-Operationsdata-1
Post Views: 58

Researchers Discover Novel Android Malware Leveraging Generative AI

Researchers have discovered a novel Android malware that leverages generative AI to achieve persistence on compromised devices. Dubbed PromptSpy, the malware employs a VNC module to enable its operators to remotely view and control the infected device. Additionally, PromptSpy can collect device information, capture lockscreen credentials, record screen activity to obtain the device’s unlock pattern, and take screenshots.

Unique Approach to Persistence

To maintain persistence, PromptSpy uses a unique approach that involves interacting with Google’s Gemini gen-AI chatbot at runtime. The malware sends a prompt to Gemini, along with an XML file containing information about the device’s UI elements, including their type, text, and position. Gemini responds with JSON instructions that inform PromptSpy where to tap or swipe on the screen to add the malware to the list of recent apps.

Exploiting Accessibility Services

By doing so, PromptSpy ensures its persistence across device reboots. The malware also exploits Accessibility Services to prevent uninstallation, overlaying invisible elements on the screen to block the user from removing it. The only way to uninstall PromptSpy is to reboot the device into Safe Mode, where third-party apps are disabled.

Attribution and Distribution

Researchers have not observed PromptSpy infections in the wild, and it is possible that the malware is a proof-of-concept. However, a domain appears to be designed to deliver the malware to users in Argentina. Analysis suggests that PromptSpy was created by Chinese developers, although this attribution is made with medium confidence, and no link to a specific threat actor has been established.

“The discovery of PromptSpy highlights the growing trend of malware leveraging AI and machine learning to evade detection and achieve persistence. As AI-powered tools become more prevalent, it is essential for security researchers and developers to stay vigilant and adapt their defenses to counter these emerging threats.”



About Author

Vaibhav

See author's posts

More Stories

5-Years-of-Shifting-Cybersecurity-Behaviors-Trends-Threats-and-Transformations-in-the-Digital-Agedata

5 Years of Shifting Cybersecurity Behaviors: Trends, Threats, and Transformations in the Digital Age

Vaibhav March 3, 2026
Healthcare-Organizations-Prioritize-Cost-Savings-Over-Cybersecurity-Measuresdata

Healthcare Organizations Prioritize Cost Savings Over Cybersecurity Measures

Vaibhav March 3, 2026
California-Consulting-Firms-Hit-by-Ransomware-Attacks-NAS-Devices-Under-Siegedata

California Consulting Firms Hit by Ransomware Attacks: NAS Devices Under Siege

Vaibhav March 3, 2026

Latest Cyber Security News

In-Demand-Cybersecurity-Jobs-Available-Now-Top-Opportunities-in-March-2026-for-IT-Professionalsdata

In-Demand Cybersecurity Jobs Available Now: Top Opportunities in March 2026 for IT Professionals

Vaibhav March 3, 2026
5-Years-of-Shifting-Cybersecurity-Behaviors-Trends-Threats-and-Transformations-in-the-Digital-Agedata

5 Years of Shifting Cybersecurity Behaviors: Trends, Threats, and Transformations in the Digital Age

Vaibhav March 3, 2026
Healthcare-Organizations-Prioritize-Cost-Savings-Over-Cybersecurity-Measuresdata

Healthcare Organizations Prioritize Cost Savings Over Cybersecurity Measures

Vaibhav March 3, 2026
California-Consulting-Firms-Hit-by-Ransomware-Attacks-NAS-Devices-Under-Siegedata

California Consulting Firms Hit by Ransomware Attacks: NAS Devices Under Siege

Vaibhav March 3, 2026
Man-Pleads-Guilty-to-Operating-AI-Generated-Fake-ID-Website-OnlyFakedata

Man Pleads Guilty to Operating AI-Generated Fake ID Website ‘OnlyFake

Vaibhav March 2, 2026
en_USEnglish
en_USEnglish