Botnets can be created via popular AI tools
Researchers have demonstrated how nine of the most widely used AI tools can be manipulated to establish large botnets. The method, termed "HalluSquatting", exploits the limitation of AI models to admit uncertainty.

Vad har hänt
A study published on July 22, 2026, shows that nine popular AI tools can be exploited to create botnets. The attack is based on large language models (LLMs) generating incorrect but plausible answers that lead users to malicious websites. The method is named "HalluSquatting" and targets the LLMs' inability to indicate that they lack information.
Key facts
| Antal AI-verktyg som kan utnyttjas | 9 |
|---|---|
| Datum för forskningspublikation | 22 juli 2026 |
| Attackmetod | HalluSquatting |
”HalluSquatting' weaponizes LLMs' inability to say 'I don't know.'”
Varför det spelar roll
The security flaw poses a risk of users unknowingly installing malware, which can lead to large-scale botnets. This threat underscores the importance of robust security mechanisms in AI development and the need for user awareness. Consequences can range from data loss to large-scale cyberattacks.
Vem påverkas
Users of AI tools, including individuals and companies, can be directly affected through unintended exposure to malicious code. Developers of AI models and platforms face increased responsibility to implement more secure systems. Security researchers are drawing attention to new attack vectors. Companies using AI in their operations should review their security protocols.
EU-status
Not relevant for EU status.
Mer att veta
Among the nine tools included in the study were ChatGPT, Perplexity AI, Google Gemini, Anthropic Claude, Microsoft Copilot, You.com, Brave Leo, Cohere Coral, and Meta AI. All could be exploited for HalluSquatting under test conditions.
Quick answers about this story
Vad har hänt?
När hände det?
Varför spelar det roll?
Vilka AI-verktyg berörs?
Länken öppnar i nytt fönster och leder till utgivarens egen sida.
Källan har spårats automatiskt från utgivaren via Aheadlines signalkedja.