Google Intelligence Group Identifies Self-Mutating AI Malware

The malware, named "PROMPTFLUX," uses LLMs during execution to rewrite its own code and evade antivirus detection, Google reported.

Olivia Sharp • November 06, 2025 • 1 min read • 725 views

Free

Google's Threat Intelligence Group reported it found new malware, "PROMPTFLUX," that uses LLMs to autonomously rewrite its own code.

A New Class of Malware

Google's Threat Intelligence Group (GTIG) reported that it has identified the first malware families that use large language models (LLMs) during execution to be "autonomous and adaptive".

This represents a significant development in AI-powered cyberattacks. State-sponsored threat actors are experimenting with using AI not just for productivity, but for "novel AI-enabled operations," GTIG said in its blog post. GTIG stated this is the "first time it has seen malware families use large language models" mid-execution to alter their behavior.

How 'PROMPTFLUX' Works

One specific malware family, named "PROMPTFLUX," was identified as being written …

Archive Access

This article is older than 24 hours. Create a free account to access our 7-day archive.

AI News

AI Sector Analysis: December 5, 2025

Meta Platforms reportedly plans to slash its Reality Labs budget by 30% in 2026, shifting …

Dec 05, 2025 • 22 min

AI News

Google faces backlash over 'Nano Banana Pro' image bias

Google's new Nano Banana Pro image model draws criticism for generating stereotypical "white savior" images …

Dec 05, 2025 • 1 min

AI News

OpenAI fast-tracks 'Garlic' model amid 'Code Red'

OpenAI initiates a "Code Red" and fast-tracks its new "Garlic" model to counter Google Gemini …

Dec 05, 2025 • 1 min

Google Intelligence Group Identifies Self-Mutating AI Malware

A New Class of Malware

How 'PROMPTFLUX' Works

Archive Access

Share this article

Related Articles

AI Sector Analysis: December 5, 2025

Google faces backlash over 'Nano Banana Pro' image bias

OpenAI fast-tracks 'Garlic' model amid 'Code Red'