Palo Alto Networks Unit 42 reported an active supply-chain threat dubbed phantom squatting, in which large language models generate plausible but nonexistent brand-related domains that attackers later register and weaponize. In a study covering 913 global brands, 685,339 prompts across two LLM families produced 2.1 million URLs; researchers found 13,229 already classified as malicious and roughly 250,000 unregistered hallucinated domains that could be claimed by adversaries. The report says the technique creates a new path for phishing, malware delivery, and brand impersonation by exploiting domains that appear credible because they are syntactically consistent with legitimate organizations.
Unit 42 said defenders observed multiple real-world cases in which hallucinated domains were identified 18 to 51 days before attackers registered them, including a Montana Empire phishing operation and a postal-themed malicious Android APK campaign. The researchers warned that phantom-squatted domains can evade traditional reputation-based URL defenses because newly registered domains start with no threat history, while trusted AI assistants and autonomous agents may surface or use those domains directly, increasing software supply-chain and user-targeting risk.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
1 event from the most recent confirmed update back to the earliest known activity.
Unit 42 published research describing "phantom squatting," a threat in which attackers register and weaponize AI-hallucinated brand-related domains. The study analyzed 913 global brands across 685,339 prompts, generating 2.1 million URLs and identifying 13,229 already classified as malicious plus about 250,000 unregistered hallucinated domains.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
4 references tracked. Mallory keeps watching after this page renders.
scworld.com
Open sourcethehackernews.com
Open sourceunit42.paloaltonetworks.com
Open sourcedarkreading.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.