Close Menu
Altcoin ObserverAltcoin Observer
  • Regulation
  • Bitcoin
  • Altcoins
  • Market
  • Analysis
  • DeFi
  • Security
  • Ethereum
Categories
  • Altcoins (3,652)
  • Analysis (3,755)
  • Bitcoin (4,384)
  • Blockchain (2,157)
  • DeFi (2,623)
  • Ethereum (2,762)
  • Event (119)
  • Exclusive Deep Dive (1)
  • Landscape Ads (2)
  • Market (2,714)
  • Press Releases (12)
  • Reddit (2,847)
  • Regulation (2,474)
  • Security (4,040)
  • Thought Leadership (3)
  • Videos (44)
Hand picked
  • SN51 is available for exchange!
  • VIRTUAL jumps 16% after Robinhood integration – More gains to come IF…
  • AI hallucinations can create botnet risks, researchers say
  • EdgeX Post-TGE Crash Assessment: Can EDGE Bulls Defend $0.2950 Support?
  • DeFi tokens outperform Bitcoin, hinting at market revaluation
We are social
  • Facebook
  • Twitter
  • Instagram
  • YouTube
Facebook X (Twitter) Instagram
  • About us
  • Disclaimer
  • Terms of service
  • Privacy policy
  • Contact us
Facebook X (Twitter) Instagram YouTube LinkedIn
Altcoin ObserverAltcoin Observer
  • Regulation
  • Bitcoin
  • Altcoins
  • Market
  • Analysis
  • DeFi
  • Security
  • Ethereum
Events
Altcoin ObserverAltcoin Observer
Home»Security»AI hallucinations can create botnet risks, researchers say
Security

AI hallucinations can create botnet risks, researchers say

July 12, 2026No Comments
Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
Share
Facebook Twitter LinkedIn Pinterest Email


Stake Banner

AI hallucinations are generally considered a problem of wrong answers. But new research suggests they could become a serious security threat.

Researchers from Tel Aviv University, Technion, and Intuit published a paper titled “Beware of Agentic Botnets: Scalable, Untargeted Promptware Attacks via Universal and Transferable Adversarial HalluSquatting.” They show how AI models that generate fake links to software repositories or other online resources can be exploited by attackers.

The method is called contradictory hallucination squatting, or HalluSquatting. It works like this: attackers predict which fake resources an AI model is likely to create. Then they record these names and add malicious content. If an AI agent later attempts to use one of these hallucinated resources, it may consider the code or instructions controlled by the attacker as legitimate.

The move to agentic AI

The threat increases as AI assistants go beyond simply answering questions. They now interact directly with computers. They can access files, search the web, write code, and run commands. This makes them powerful but also creates security vulnerabilities. When these agents act on the information they retrieve without verifying whether the source is real, they can be deceived.

“The increasing adoption of LLM agent applications has introduced a new threat previously called promptware,” the researchers wrote. They noted that while previous attacks required direct channels to AI, this method only works over the Internet.

Real-world test results

During testing, the team discovered that the AI ​​models were hallucinating resources at high rates. In repository cloning scenarios, the rate reached 85%. In the skill installation tests, it was 100%. They tested the technique with popular coding assistants and agents, including Cursor, GitHub Copilot, Gemini CLI, and OpenClaw.

Researchers warn that this could be used to create AI-based botnets. A botnet is a network of infected computers or devices controlled remotely by an attacker. They are often used in denial of service attacks, cryptocurrency mining, or ransomware campaigns.

Similar to Typosquatting, but for AI

HalluSquatting is similar to typosquatting. This is a tactic where attackers register domain names that look like real websites or software packages to fool users who type incorrectly. HalluSquatting instead targets errors made by AI models.

This is not the only research on the safety of AI agents. In April, Google researchers showed how malicious websites could hijack AI agents through indirect injection. They demonstrated attacks that included stealing passwords, deleting files, and manipulating payments. Another study on the “CopyPasta” attack showed how hidden prompts in developer files could trick AI coding assistants into delivering malicious code.

In June, an OpenClaw user reported more than 6,000 attempts by attackers to trick the AI ​​agent into disclosing sensitive information. The pattern is clear: as AI agents acquire more abilities, they also become bigger targets. The researchers suggest that developers should be careful about how these agents process external information.

Loading



Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleEdgeX Post-TGE Crash Assessment: Can EDGE Bulls Defend $0.2950 Support?
Next Article VIRTUAL jumps 16% after Robinhood integration – More gains to come IF…

Related Posts

Security

DeFi tokens outperform Bitcoin, hinting at market revaluation

July 12, 2026
Security

Ethereum faces $87M short bet as $1,580 support tested

July 11, 2026
Security

Ledger Researchers Discover Laser Attack Flaw in Tangem Wallet Cards

July 11, 2026
Add A Comment
Leave A Reply Cancel Reply

Single Page Post
Share
  • Facebook
  • Twitter
  • Instagram
  • YouTube
Featured Content
Event

Dutch Blockchain Week 2026 strengthens position as Europe’s leading B2B blockchain event week

April 14, 2026

Amsterdam, April 2026 – Dutch Blockchain Week 2026 is rapidly evolving into one of Europe’s…

Event

Global Games Show Riyadh: The Ultimate Creator & Influencer Hub

March 31, 2026

The fast-evolving gaming ecosystem of Riyadh is powered by solid national investment, a flourishing esports…

1 2 3 … 82 Next
  • Facebook
  • Twitter
  • Instagram
  • YouTube

VIRTUAL jumps 16% after Robinhood integration – More gains to come IF…

July 12, 2026

EdgeX Post-TGE Crash Assessment: Can EDGE Bulls Defend $0.2950 Support?

July 12, 2026

Audiera Challenges Token Unlock Dump – Why BEAT Jumped 18% Instead

July 11, 2026
Facebook X (Twitter) Instagram LinkedIn
  • About us
  • Disclaimer
  • Terms of service
  • Privacy policy
  • Contact us
© 2026 Altcoin Observer. all rights reserved by Tech Team.

Type above and press Enter to search. Press Esc to cancel.

bitcoin
Bitcoin (BTC) $ 63,935.00
ethereum
Ethereum (ETH) $ 1,802.94
tether
Tether (USDT) $ 0.999359
bnb
BNB (BNB) $ 572.78
usd-coin
USDC (USDC) $ 0.9998
xrp
XRP (XRP) $ 1.09
solana
Solana (SOL) $ 76.44
tron
TRON (TRX) $ 0.329509
figure-heloc
Figure Heloc (FIGR_HELOC) $ 1.04
staked-ether
Lido Staked Ether (STETH) $ 2,265.05