Return to Threats

Phantom Squatting Uses AI-Hallucinated Domains for Phishing and Malware

thehackernews.com 2026-07-01 malicious AI use Critical

What Happened

Large language models keep inventing web addresses that do not exist. Attackers have started buying those made-up domains before anyone else can, then hosting phishing pages on them to catch traffic that AI tools point their way. Palo Alto Networks' Unit 42 calls the trick phantom squatting, and its new research shows it is already happening in the wild. The reason it matters is

Why It Matters

Palo Alto Networks Unit 42 reports that attackers are exploiting AI-hallucinated domains through “phantom squatting,” registering fake URLs that language models invent and then using them for phishing and malware delivery. The research found 2.1 million AI-generated URLs across tested brands, with about 250,000 unowned hallucinated domains and real-world detections occurring weeks before adversary registration. CyberSE.AI analysis: this is a high-risk malicious AI use pattern because it turns model output into an attack surface, especially where users or autonomous agents trust AI-generated links without verification.

Healthcare Fintech SaaS SMB AI startups

CyberSE Analysis

This signal maps to malicious AI use. Organizations using AI agents, LLM APIs, SaaS integrations, or sensitive data workflows should review whether this class of issue could create unauthorized tool execution, data leakage, weak approval gates, or unmanaged supply-chain exposure.

Recommended Actions

  • Restrict AI agent tool permissions and production write paths.
  • Review sensitive data access across prompts, logs, embeddings, memory, and SaaS integrations.
  • Add human approval workflows for high-impact or state-changing actions.
  • Run prompt injection and indirect prompt injection tests against affected workflows.
  • Document the owner, control gap, and remediation deadline for this risk class.

Source

https://thehackernews.com/2026/07/phantom-squatting-uses-ai-hallucinated.html

Talk to AI CISO