BREAKING
macOS.Gaslight Targets Analysts' AI
0
fake messages
0
KB
injection block
0
early detections
Attacking Perception, Not Sandbox
How Gaslight Operates
1
Steal Keychain & browsers
↓
2
Telegram C2 polling
↓
3
LaunchAgent persistence
↓
4
Self-delete bot token
Familiar Tools, Novel Tricks
Staples
●
Rust implant
●
Telegram C2
●
Keychain theft
Novel
●
38-message injection
●
Self-staged CPython
●
Runtime token wipe
Treat Samples as Adversarial Input
AI NEWS BLITZ
A new Rust macOS malware tries to make analysts' own AI tools refuse to analyze it.