Summary
Researchers have identified a new AI attack method called HalluSquatting, where attackers exploit AI hallucinations to trick AI assistants into downloading malicious software. This technique targets AI tools capable of browsing the internet and running commands, potentially leading to data theft or botnet recruitment. The attack involves registering fake software project names that AI models hallucinate, turning these imaginary projects into real online traps.