SEO poisoning campaign leverages Gemini and Claude Code impersonation to deliver infostealer
Source: Blog.Eclecticiq
Published:
<p>The Gemini CLI impersonation campaign was first publicly identified by independent threat researcher @g0njxa [1] , whose initial discovery enabled analysis and infrastructure pivoting documented in this report. The infection chain begins with a Google by a developer looking for the official Gemin