New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis
Summary
A new malware called Gaslight, created by North Korea-aligned hackers, targets macOS systems and uses prompt injection (tricking an AI by hiding instructions in its input) to disrupt AI tools that analyze malware. The malware embeds fake system-failure messages designed to confuse AI-assisted analysis tools, while also stealing sensitive data like browser histories and passwords through a command-and-control (C2, a server that lets attackers remotely control infected computers) channel powered by Telegram.
Classification
Related Issues
CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-
CVE-2026-30308: In its design for automatic terminal command execution, HAI Build Code Generator offers two options: Execute safe comman
Original source: https://thehackernews.com/2026/06/new-gaslight-macos-malware-uses-prompt.html
First tracked: June 25, 2026 at 08:00 AM
Classified by LLM (prompt v3) · confidence: 92%