THREATOPS
THREAT OPSThreat News › macOS.Gaslight | Rust Backdoor Turns Prompt Injection on the Analyst, Not the Sandbox

macOS.Gaslight | Rust Backdoor Turns Prompt Injection on the Analyst, Not the Sandbox

medsentinelonePublished 2026-06-23

<h2>Executive Summary</h2> <ul> <li>SentinelLABS has analyzed a Rust macOS implant that embeds a 3.5 KB prompt-injection payload of 38 fabricated “system” messages, built to steer an LLM-assisted triage pipeline into aborting or refusing its analysis.</li> <li>Command-and-control runs over a Telegram Bot API polling loop, with AES-GCM payloads over certificate-pinned TLS.</li> <li>The implant self

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://www.sentinelone.com/labs/macos-gaslight-rust-backdoor-turns-prompt-injection-on-the-analyst-not-the-sandbox/