Thread | Brutkey

I learned a new word today (via HackerNews) that still makes me chuckle b/c it's so convoluted and meta that it's definitely an apt candidate for a 2025 time capsule: "Slopsquatting."

Per Wikipedia:
Slopsquatting is a type of cybersquatting. It is the practice of registering a non-existent software package name that a large language model (LLM) may hallucinate in its output, whereby someone unknowingly may copy-paste and install the software package without realizing it is fake.[1] Attempting to install a non-existent package should result in an error, but some have exploited this for their gain in the form of typosquatting.[2]

The name is a portmanteau of "AI slop" and "typosquatting".[3]

https://en.wikipedia.org/wiki/Slopsquatting

https://news.ycombinator.com/item?id=44810695

Benjamin Geer
@benjamingeer@piaille.fr

@briankrebs@infosec.exchange @mhoye@mastodon.social Is there a word for when a domain name expires and someone buys it, feeds all the previous owner’s web pages into an LLM, and generates a new site containing a weird mixture of dodgy-looking adverts and LLM paraphrases of the old content (to trick people who search for it)?

RSOLV
@rsolv@infosec.exchange

@briankrebs@infosec.exchange slightly (okay, entirely) self-promotional, but scanning for and mitigating slopsquatting is under development over at https://rsolv.dev