Phantom Squatting: AI-Hallucinated Domains as a Software Supply Chain Vector
Summary
Researchers discovered that large language models (LLMs, AI systems trained on massive amounts of text data) frequently generate fake web domain names that don't actually exist but sound like they belong to real companies. Attackers are registering these made-up domains (a practice called phantom squatting) to intercept traffic sent by AI systems and users who trust the LLM's output, creating a new supply chain attack vector (a way to compromise software development and deployment). The researchers identified over 13,000 confirmed malicious URLs and approximately 250,000 unregistered hallucinated domains that attackers could exploit.
Solution / Mitigation
Palo Alto Networks customers can use the following products and services for protection: Advanced WildFire, Advanced URL Filtering, Advanced DNS Security (systems that monitor and block suspicious web traffic), Prisma AIRS, Koi Agentic Endpoint Security, and the Unit 42 AI Security Assessment. Organizations can also contact the Unit 42 Incident Response team if they suspect compromise.
Classification
Affected Vendors
Related Issues
Original source: https://unit42.paloaltonetworks.com/phantom-squatting-hallucinated-web-domains/
First tracked: July 1, 2026 at 02:00 AM
Classified by LLM (prompt v3) · confidence: 92%