HalluSquatting: turning LLM hallucinations into botnets
Researchers detailed HalluSquatting — an attack that exploits LLMs’ tendency to hallucinate repository identifiers. By registering predictable fabricated names, attackers can mass-infect coding agents like Cursor and GitHub Copilot.