GOOGLE Antigravity has moved from a developer tool to a target for abuse as researchers uncovered a remote code execution vulnerability that could escape the sandbox and run arbitrary code, with Google patching the flaw in late February. Researchers at Pillar Security described how the vulnerability stems from insufficient input sanitisation in a parameter, enabling an attacker to inject commands via a file search operation and bypass the platform’s Secure Mode.
The platform’s rising popularity has already been leveraged to distribute malware, as Malwarebytes found a fake google-antigravity[.]com site delivering a trojanised installer that also deploys two PowerShell scripts to deliver a further payload meant to harvest data.
The malware can access browser data, stored passwords, cookies, autofill data, messaging apps, cryptocurrency wallets and more, and includes capabilities for clipboard hijacking and keystroke logging, with a hidden desktop feature that could let an attacker operate while the victim sees nothing unusual. according to Pillar researchers, this combination highlights how the ecosystem around Antigravity is being exploited for data theft and stealthy account compromise. 22 April 2026