A new cybersecurity threat known as HalluSquatting weaponizes the inherent tendency of large language models to hallucinate resource identifiers. This attack exploits AI coding assistants and agents, including popular tools like GitHub Copilot and Gemini CLI, by predicting and registering identifiers that LLMs are likely to hallucinate. By seeding these predicted identifiers with malicious software, attackers can indiscriminately infect a massive number of devices without needing to target each one individually, enabling the creation of large botnets and large-scale DDoS attacks. AI
IMPACT This attack highlights a critical vulnerability in AI agents, potentially enabling large-scale botnets and DDoS attacks by exploiting LLM hallucinations.
RANK_REASON Article details a new attack method targeting existing AI tools, rather than a new release from a frontier lab.
- Ars Technica
- Cline
- Cursor
- Cursor CLI
- Gemini CLI
- GitHub Copilot
- HalluSquatting
- NanoClaw
- OpenClaw
- sigmoid.social
- Windsurf
- ZeroClaw
AI-generated summary · Google Gemini · from 4 sources. How we write summaries →