News

New hack exploits AI hallucinations to trick agents into running malicious code — 'HalluSquatting' attack exploits a fundamental weakness in every available model

  • [email protected] (Bruno Ferreira) , Bruno Ferreira--Tom's Hardware UK
  • published date: 2026-07-09 11:15:00 UTC

Attackers can exploit how AI bots hallucinate software URLs to create massive botnets. The vulnerability is endemic to every model.

Ever since the advent of agentic AI, security researchers have been yelling from the top of their lungs about how it's a bad idea to grant user-level permissions to an LLM — for all purposes, a progr… [+4724 chars]