ctipilot.ch

ESET Threat Report H1 2026

report · report:eset-threat-report-h1-2026 single-source

ESET's semi-annual threat-landscape report (Dec 2025-May 2026 telemetry), published 2026-07-08: PromptSpy (first known Android malware using generative AI/Gemini at runtime), ClickFix detections more than doubling H2 2025->H1 2026, record-level QR-code phishing (~11% of detected phishing emails), and 100+ distinct EDR-killer tools documented in the wild (ESET/WeLiveSecurity, 2026-07-08).

Coverage timeline
1
first 2026-07-09 → last 2026-07-09
Entries
1
1 distinct days
Sources cited
2
2 hosts
Sections touched
1
research
Co-occurring entities
0
no co-occurrence

Story timeline

  1. 2026-07-09ESET Threat Report H1 2026: first Android malware using generative AI at runtime, ClickFix detections more than double, record QR-phishing, 100+ EDR-killers
    researchESET Threat Report H1 2026: PromptSpy runs Gemini in its own execution flow, ClickFix 2x, QR-phishing at record levels, 100+ EDR-killers catalogued

Where this entity is cited

  • research1

Source distribution

  • globenewswire.com1 (50%)
  • welivesecurity.com1 (50%)

Entries about ESET Threat Report H1 2026 (1)

2026-07-09 · view entry permalink →

NOTABLE

ESET Threat Report H1 2026: first Android malware using generative AI at runtime, ClickFix detections more than double, record QR-phishing, 100+ EDR-killers

ESET's semi-annual threat-landscape report (telemetry December 2025–May 2026) flags four developments a Tier 2/3 team should track (ESET / WeLiveSecurity, 2026-07-08; ESET press release, 2026-07-08).

First, ESET analysed roughly 900,000 "AI skills" — small functional components used by AI agents — and found tens of thousands suspicious and thousands outright malicious, an expanding attack surface in the emerging agentic-AI ecosystem. Second, it identified PromptSpy, described as the first known Android malware to use generative AI (specifically Google's Gemini) inside its own execution flow to interpret UI elements and adapt behaviour across devices at runtime rather than relying on hardcoded logic — following the first AI-powered ransomware disclosed in 2025 (ESET, 2026-07-08). Third, ClickFix (the fake-error social-engineering technique) has expanded beyond fake CAPTCHA prompts into AI-themed help pages, browser extensions and cloud-authentication scenarios, with ESET detections more than doubling between H2 2025 and H1 2026. Fourth, QR-code phishing ("quishing") reached record levels, with roughly 11% of all ESET-detected phishing emails in H1 2026 using QR codes to move victim interaction onto mobile devices and evade cursory inspection. Ransomware activity continued unabated with over 100 distinct EDR-killer tools now catalogued by ESET, though a declining share of victims are reportedly paying.

ESET researchers identified PromptSpy, the first known Android malware to use generative AI in its execution flow

ESET detections of this vector more than doubled between H2 2025 and H1 2026

ESET Research has documented over 100 EDR killers used in the wild, with new variants appearing regularly

ESET / WeLiveSecurity 2026-07-08
annual-report09 Jul 04:32Zsingle-sourceOpen finding ↗