🟠 High | Source: The Hacker News
HalluSquatting is a novel attack technique that exploits the tendency of AI coding assistants to hallucinate package or library names. Attackers identify packages that AI tools reliably fabricate, register those names on public registries, and embed malware — including botnet payloads — that gets silently installed when a developer follows the AI’s advice. This turns a known AI reliability flaw into a practical software supply chain attack requiring no phishing or social engineering.
Security Architect’s Take: Enforce allowlists for approved package registries and implement automated scanning of all dependencies — including AI-suggested ones — using tools such as Socket, Snyk, or Dependabot before they reach any build pipeline. Consider adding a policy requiring human verification of any package with low download counts or recent registration dates, particularly in CI/CD environments where AI assistants are in use.
Original advisory: New HalluSquatting Attack Could Trick AI Coding Assistants Into Installing Botnet Malware