Seán Fobbe on Nostr: Non-existent software dependencies hallucinated by LLMs are already being used for ...
Non-existent software dependencies hallucinated by LLMs are already being used for successful software supply chain attacks: https://www.theregister.com/2024/03/28/ai_bots_hallucinate_software_packages/
Reported by Bar Lanyado. Note that the payload was non-malicious in this study. One of the companies snared by this experiment was Alibaba.
There's been a lot of hand-wringing about fake case citations, but fake software package citations that download a dangerous payload can sink your entire business/government agency/court/etc in an hour.
Reported by Bar Lanyado. Note that the payload was non-malicious in this study. One of the companies snared by this experiment was Alibaba.
There's been a lot of hand-wringing about fake case citations, but fake software package citations that download a dangerous payload can sink your entire business/government agency/court/etc in an hour.