> EssentialInfoSec
Home / Feb 21, 2026 / Story
0
#6 The Hacker News general February 19, 2026 at 17:52 UTC

PromptSpy Android Malware Abuses Gemini AI to Automate Recent-Apps Persistence

By [email protected] (The Hacker News)

AI Summary

ESET discovered PromptSpy, the first Android malware to abuse Google's Gemini AI during execution to maintain persistence after device reboots. The malware captures lockscreen data, blocks uninstallation, and takes screenshots while leveraging generative AI to analyze on-screen elements and ensure survival.

Read full article → https://thehackernews.com/2026/02/promptspy-androi…

Relevance score: 85.0/100

# More from February 21

  1. 1
    FBI: $20 Million Losses Caused by 700 ATM Jackpotting Attacks in 2025 SecurityWeek
  2. 2
    BeyondTrust Vulnerability Exploited in Ransomware Attacks SecurityWeek
  3. 3
    Romanian hacker faces up to 7 years for breaching Oregon emergency management department The Record
  4. 4
    Ukrainian National Sentenced to 5 Years in North Korea IT Worker Fraud Case The Hacker News
  5. 5
    Former Google Engineers Indicted Over Trade Secret Transfers to Iran The Hacker News
  6. 7
    Japanese tech giant Advantest hit by ransomware attack BleepingComputer
  7. 8
    Attackers Use New Tool to Scan for React2Shell Exposure Dark Reading
  8. 9
    CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA Alerts
  9. 10
    Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution The Hacker News