PromptSpy Malware Exploits Google Gemini for Stealth Attacks

Sanket Chaukiyal

February 21, 2026

TL;DR

  • PromptSpy is a new Android malware variant.
  • It abuses Google’s Gemini AI for persistence.
  • Discovered by ESET researchers.
  • Raises concerns over AI weaponization.

PromptSpy’s Sinister Use of Google Gemini

ESET researchers have uncovered a troubling new threat in the form of PromptSpy, an Android malware variant that has found a way to exploit Google’s Gemini AI. The malware leverages Gemini’s generative AI capabilities to maintain persistence on infected devices. This discovery, reported in the Dev.to Security News Weekly Round-up, marks a new chapter in cyber threats by weaponizing AI embedded in mobile devices.

Why AI Weaponization is a Growing Threat

So, why should we care about yet another piece of malware? Because PromptSpy signals a pivotal shift in how threat actors are expanding their toolkits. By using AI like Gemini, malware authors are not just exploiting traditional vulnerabilities. They’re turning AI’s strengths into weaknesses. The losers? Security teams and end-users who rely on AI for convenience and functionality.

Who stands to gain from this AI manipulation? Cybercriminals, obviously. But the real question is, how vulnerable are our AI systems to these kinds of attacks? The implications are significant. As AI becomes more ingrained in our tech, the potential for exploitation grows, creating a broader attack surface than ever before.

The Broader Picture: AI as Both Savior and Villain

Zooming out, PromptSpy’s emergence is a clear indicator of where we’re heading. AI is no longer just a buzzword; it’s a battleground. This isn’t just about Android malware anymore. It’s about AI’s dual role as both a hero and a potential villain in cybersecurity.

As AI continues to evolve, so do the methods of those who seek to exploit it. The industry must recognize this duality and adapt. The days of viewing AI solely as a force for good are over. It’s time to acknowledge and prepare for its darker applications.

What to Watch as AI and Malware Intersect

Looking ahead, there are several key areas to monitor. First, keep an eye on how quickly security firms can adapt to these AI-based threats. Their speed and effectiveness will be crucial in mitigating risks.

Second, watch for any regulatory responses that might emerge. Governments may need to step in to establish guidelines for AI usage to prevent abuses like this. Finally, track the development of AI’s defensive capabilities. Can AI be used to counteract AI-driven threats? The future of cybersecurity may depend on it.

FAQ

What is PromptSpy?

PromptSpy is an Android malware variant that exploits Google’s Gemini AI to maintain persistence on infected devices.

How does PromptSpy exploit AI?

PromptSpy uses the generative capabilities of Google’s Gemini AI to stay active on infected devices, effectively weaponizing AI for malicious purposes.

Who discovered PromptSpy?

ESET researchers discovered the PromptSpy malware and its use of Google’s Gemini AI.

Why is this discovery important?

This discovery highlights the new threat vector of AI weaponization, expanding the attack surface beyond traditional security boundaries.

Sanket Chaukiyal — Editor at Smart Chunks

Sanket Chaukiyal

Technology editor • 12+ years in editorial

Sanket is the founder and editor of Smart Chunks. He spent over six years at Autocar India (Haymarket SAC Publishing) as Sub Editor and Senior Copy Editor, and later served as Account Director (Content) at Rite Knowledge Labs. He holds a Master's in Media and Communication from the Symbiosis Institute of Media and Communication.

All articles → LinkedIn

Microsoft Exposes AI Recommendation Poisoning in Chatbots

Claude Opus 4.6 Unleashes AI Shockwave, SaaS Stocks Tumble