AI-Driven Phishing Exploits Device Permissions And Exfiltrates Data

Cyble Research & Intelligence Labs in early 2026 uncovered an AI-driven phishing campaign that uses tailored social engineering to trick users into granting camera, microphone, and system permissions. Generative-model–assisted scripts mimic human timing, escalate privileges gradually, and stream photos, audio, device fingerprints and contacts to attacker-controlled Telegram bots, enabling stealthy, scalable data exfiltration without traditional credential theft.