Leading AI tools such as OpenClaw and Github Copilot can be hijacked to create massive new botnets.


  • AI hallucinations can be used as a weapon, new report warns
  • HalluSquatting is short for “squatting contradictory hallucination”
  • GitHub Copilot, Gemini CLI and OpenClaw are all affected

Your favorite AI service could be hijacked to deploy code that turns your phone or PC into a botnet, according to researchers from Intuit, Technion and Tel Aviv University.

The technique was given the name HalluSquatting, a portmanteau of adversarial hallucination squatting, and is similar to typosquatting in that it relies on an error in order to distribute malicious code. Although typosquatting can occur when typing a website URL incorrectly, HalluSquatting relies on an LLM’s inability to identify a resource or repository with 100% accuracy.

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top