Back to Feed
Supply ChainJul 1, 2026

'Phantom Squatting': An Emerging AI-Driven Supply Chain Threat

LLMs hallucinate fake domains for legitimate brands that attackers register for supply chain attacks.

Summary

A new attack technique called 'phantom squatting' exploits a vulnerability in large language models that causes them to consistently hallucinate Web domains associated with legitimate brands. Attackers can register these fabricated domains to impersonate legitimate services and conduct supply chain attacks. The technique represents a difficult-to-detect threat vector because the domains appear plausible to victims who encounter them through LLM-generated content.

Entities

Large Language Models (LLMs) (technology)Phantom Squatting (campaign)