%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
Recently, security researchers from Google's Threat Intelligence team discovered an experimental malware family called PROMPTFLUX during network analysis. The innovation of this malware lies in its ability to remotely call Google's Gemini AI to rewrite its code in real-time, thereby evading detection by security software.
Image source note: The image was generated by AI, and the image licensing service is Midjourney
The operation mechanism of PROMPTFLUX malware is quite complex. It can use artificial intelligence technology to dynamically generate malicious scripts and obfuscate its own code. Many traditional security software rely on quick scans of the characteristics and behaviors of malware for detection. However, due to the constantly changing characteristics of PROMPTFLUX, the scanning efficiency of these security software has significantly declined.
Researchers pointed out that the current discovered PROMPTFLUX malware is still in the experimental stage, with many functional modules not yet activated, and it has not shown any behavior that could cause actual harm. This suggests that hackers may still be conducting early testing to explore the potential capabilities of this malware.
Nevertheless, the research team expressed concern about the hackers' technical methods. Their approach is quite advanced in the field of cybersecurity. By using artificial intelligence, hackers can not only quickly rewrite malware but also dynamically write new malicious modules as needed. This flexibility makes the malware lighter and capable of generating and executing specific malicious code on the spot during an attack.
The Google security team warned that the emergence of this new type of malware may make the detection of malware more difficult in the future. This trend highlights the cybersecurity challenges brought about by the widespread use of generative artificial intelligence, and calls on the entire industry to pay more attention to this issue.
Key points:
- 🦠 A malware called PROMPTFLUX was discovered, which can rewrite its own code using AI to evade detection.
- ⚙️ This malware uses dynamic generation and obfuscation techniques, significantly reducing the efficiency of security software detection.
- 🔍 Researchers warn that the use of AI may make the detection of malware more difficult in the future, and emphasize the need for increased industry attention.