importantSYS.SOURCE: The Hacker News• 2026-07-01T12:50:51+05:30
Phantom Squatting using AI-Hallucinated Domains for Phishing and Malware
#Phishing#AI#Domain Security#Malware
Attackers are exploiting large language models to invent non-existent domains, which are then registered immediately to host phishing pages and malware. This technique leverages the trust developers place in AI-generated links, creating a new, potent vector for cyberattacks.
Large language models keep inventing web addresses that do not exist. Attackers have started buying those made-up domains before anyone else can, then hosting phishing pages on them to catch traffic that AI tools point their way.
Palo Alto Networks' Unit 42 calls the trick phantom squatting, and its new research shows it is already happening in the wild.
The reason it matters is
*** END OF TRANSMISSION ***