Embedding Forbidden Text in Spyware to Discourage AI Analysis

Bruce Schneier·Schneier on Security·Security / OSINT·

At least one malware developer is adding text about nuclear and biological weapons to their spyware, in an effort to stop automatic AI analysis. Details: The _index.js payload begins with a large JavaScript block comment containing fake system instructions and policy-triggering content. Because it is inside a comment, it does not affect JavaScript execution. The runtime skips it. The real malware begins after the comment with a try{eval(…)} wrapper around a large character-code array and a ROT-s...

Read full article →

Related Articles

Google Chrome silently installs a 4 GB AI model on your device without consent
john-doe · Hacker News · 1mo ago
DNSSEC disruption affecting .de domains – Resolved
warpspin · Hacker News · 1mo ago
Security through obscurity is not bad
mobeigi · Hacker News · 1mo ago
US healthcare marketplaces shared citizenship and race data with ad tech giants
ZeidJ · Hacker News · 1mo ago
The text mode lie: why modern TUIs are a nightmare for accessibility
SpyCoder77 · Hacker News · 1mo ago