New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis (opens in new tab)

A novel Rust-based macOS implant, codenamed Gaslight, has been uncovered, distinguished by its unique prompt injection payload designed to mislead AI-powered malware analysis tools. Attributed with high confidence to North Korea-aligned threat actors, Gaslight seeks to disrupt analysis by embedding fabricated system-failure messages, causing AI triage agents to doubt their session and abort investigations, effectively "gaslighting" the analyst's tools rather than the sandbox environment. The ...