PromptSpy Android Malware Exploits Gemini AI for Persistence

The PromptSpy Android malware abuses Google’s Gemini AI at runtime to analyze on-screen elements and maintain persistence on infected devices, even after a reboot. The malware targets Android systems and leverages Gemini’s capabilities to enhance its operational resilience. No specific dates, victim counts, or technical indicators such as CVE IDs were provided in the report. The primary impact involves unauthorized persistence on compromised devices through AI-driven runtime manipulation. The threat is categorized under mobile malware and AI exploitation.