PROMPTFLUX is an experimental malware that employs the Gemini AI API to achieve real-time adaptations, marking a new phase in malware development. Detected by the Google Threat Intelligence Group, this malware operates as a VBScript-based dropper, disguised as benign installations. Its standout feature, the ‘Thinking Robot’ module, crafts evasion scripts by querying the Gemini model for obfuscated code.
The malware’s design allows it to rewrite its source code regularly, ensuring it remains undetected by traditional antivirus solutions. While it currently poses limited risks, its potential to enable autonomous cyber attacks is concerning. The report indicates that state-sponsored actors are exploring the use of such AI capabilities throughout various attack phases, signaling a growing trend in the cybercrime landscape.
👉 Pročitaj original: Cyber Security News
