AI-Hallucinated Domains Weaponized for Phishing in 'Phantom Squatting' Attacks
Executive Briefing
- Reveals Unit 42 discovered 250,000 unregistered domains embedded in 2.1 million AI-generated links
- Exploits a tactic called 'phantom squatting,' where attackers register domains AI models fabricate
- Enables phishing and malware delivery by intercepting traffic meant for hallucinated web addresses
- Highlights a novel attack surface created by widespread enterprise adoption of AI coding and content tools
Sponsored