Rewards Hub GoPlus Security has identified a new Android malware named PromptSpy that exploits AI technology to remotely control victim devices. The malware is typically distributed through fake banking phishing sites, tricking users into downloading APKs not available on Google Play. It then requests permission to "install apps from unknown sources" to deploy its core payload. A key feature of PromptSpy is its use of the Google Gemini API to send the device's current UI XML structure to a large model for analysis, with AI returning real-time instructions for malicious control. GoPlus advises users to avoid installing APKs from unknown sources, be cautious with accessibility permissions, and enable Google Play Protect.
New Android Malware 'PromptSpy' Uses AI for Remote Control
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.