Top AI tools such as OpenClaw and Github Copilot can be hijacked to create new massive botnets

Top AI tools such as OpenClaw and Github Copilot can be hijacked to create new massive botnets


  • AI hallucination can be weaponized, new report warns
  • HalluSquatting is short for “adversarial hallucination squatting”
  • GitHub Copilot, Gemini CLI, and OpenClaw are all affected

Your favorite AI service could be subverted to deploy code that turns your phone or PC into a botnet, according to researchers at Intuit, Technion, and Tel Aviv University.

The technique has been given the name HalluSquatting, a portmanteau of adversarial hallucination squatting, and is similar to typosquatting in that it relies on a mistake in order to distribute malicious code. While typosquatting might occur with the incorrect input of a website URL, HalluSquatting pivots on an LLM being unable to identify a resource or repository with 100% accuracy.

Leave a Reply

Your email address will not be published. Required fields are marked *