-
Google Warns of PROMPTFLUX Malware That Uses Gemini API for Self-Rewriting Attacks
06 Nov 2025 11:49 GMT
… .
The discovery of experimental malware called PROMPTFLUX marks a watershed … represents something fundamentally different.
This malware embodies true autonomy, leveraging AI … begun tracking in 2025.
Malware
Function
Description
Status
FRUITSHELL
Reverse …
-
KT accused of concealing major malware infection, faces probe over customer data breach
06 Nov 2025 08:19 GMT
… the company concealed a major malware infection last year.
According … had been infected with BPFDoor malware and other malicious code. … The malware enables remote attackers to … legal measures.
The same malware was used in an earlier …
-
KI-Malware ist keine Theorie mehr
06 Nov 2025 11:43 GMT
… sowie zu verschlüsseln.
QUIETVAULT, eine Malware, die darauf ausgelegt ist, GitHub …
-
Google Warns of New PROMPTFLUX Malware Using Gemini API to Rewrite its Own Source Code
06 Nov 2025 06:20 GMT
… details of an experimental malware family called PROMPTFLUX, which … indicating early development, the malware also attempts lateral spread … survival, differing from static malware that relies on fixed … and-control setups.
PROMPTFLUX Malware Using Gemini API
For …
-
Google researchers detect first operational use of LLMs in active malware campaigns
06 Nov 2025 05:39 GMT
… to establish persistence. The malware can also copy itself to … network drives.
Interestingly, the malware’s “thinking robot” module … API to rewrite the malware’s entire source code … researchers note.
Other tracked malware includes FRUITSHELL, a reverse shell …
-
Russian APT abuses Windows Hyper-V for persistence and malware execution
06 Nov 2025 05:39 GMT
The attackers then used the Import-VM and Start-VM PowerShell cmdlets to import the virtual machine into Hyper-V and start it with the name WSL — a deception tactic given that WSL on Windows stands for Windows Subsystem for Linux, another feature that …
-
Investigation shows KT concealed malware infections, security failures leading to hacking breach
06 Nov 2025 05:06 GMT
… found to have concealed critical malware infections and failed to report … infected with so-called BPFDoor malware and other malicious code.
Despite … , according to the team.
BPFDoor malware enables remote attackers to bypass …
-
Google Finds Malware Connecting to AI Large Language Models to Hone Attacks
06 Nov 2025 02:58 GMT
… said without elaborating.
Another malware strain, called Promptflux, appears … the discovered AI-generated malware really poses a threat … company discovered while the malware was in development. … about another AI-powered malware called Promptsteal that …
-
Hundreds of Malware-Laden Apps Downloaded 42 Million Times From Google Play
06 Nov 2025 01:30 GMT
… a 67% increase in malware targeting Android devices over … during the period, 239 malware-laden apps bypassed Google’s … 35% attributed to the Gafgyt malware variant.
Manufacturing and transportation … fifth of all observed IoT malware attacks. This marks a …
-
Google Uncovers PROMPTFLUX Malware That Uses Gemini AI to Rewrite Its Code Hourly
06 Nov 2025 00:58 GMT
… Basic Script (VB Script) malware dubbed PROMPTFLUX that interacts … regeneration capability aside, the malware saves the new, obfuscated … instances of LLM-powered malware observed by the company … the development of custom malware to support file transfer …
About
© 1995-2025