'Phantom Squatting': An Emerging AI-Driven Supply Chain Threat
2026-07-01
Dark Reading

The information displayed in the AIM should not be reported as representing the official views of the OECD or of its member countries.
Researchers from Palo Alto Networks' Unit 42 discovered that attackers are exploiting large language models (LLMs) that hallucinate fake web domains by registering these nonexistent domains—a tactic called "phantom squatting." This enables phishing, malware distribution, and software supply chain attacks, resulting in credential theft and other harms across multiple sectors.[AI generated]