HalluSquatting attack exploits AI hallucinations to build botnets by tricking coding assistants
Security researchers from Tel Aviv University revealed HalluSquatting, an AI security threat that exploits AI hallucinations to trick AI agents into executing malicious code. The attack targets popular AI coding assistants like Cursor, GitHub Copilot, and Gemini CLI, with hallucination rates reaching 85% for repositories and 100% for trending skills. Attackers register fake resource names predicted by large language models, enabling AI-enabled botnets at unprecedented scale.