pull down to refresh

Slopsquatting - Wikipediaen.wikipedia.org/wiki/Slopsquatting
609 sats \ 9 comments \ @Scoresby 6 Aug AI
I'm fascinated by the ways people are going to attempt to get their desired payload (an ad, a link, an idea) into other people's chat outputs. In this case, it seems that if a model hallucinates the name of a package, it may do so again, and if you happen to make available a real package using the hallucinated package's name, you might be able to get it downloaded.
Slopsquatting is a type of cybersquatting. It is the practice of registering a non-existent software package name that a large language model (LLM) may hallucinate in its output, whereby someone unknowingly may copy-paste and install the software package without realizing it is fake.[1] Attempting to install a non-existent package should result in an error, but some have exploited this for their gain in the form of typosquatting.[2]
write
preview
related posts
302 sats \ 1 reply \ @SimpleStacker 6 Aug
Huh, that's pretty smart. I'm impressed by peoples' creativity in trying to make a buck.
Fun fact, ChatGPT almost got me to download a malicious software package: #943310. Good thing I was being careful!
reply
13 sats \ 0 replies \ @bitcoingraffiti 6 Aug
impressed with scamming, you mean?
reply
102 sats \ 0 replies \ @justin_shocknet 6 Aug
Been using socket.dev for automated checks on supply chain more generally
Also my cursor rules prohibit new libs, even though they're rarely malicious they're often unnecessary or even retarded
reply
102 sats \ 0 replies \ @optimism 6 Aug
If I ever wanted to get into the malware business, this would be so awesome.
reply
10 sats \ 1 reply \ @LAXITIVA 6 Aug
Dam I was hoping this was some kind of new fetish
reply
0 sats \ 0 replies \ @Scoresby OP 6 Aug
It has that kind of ring to it. But let's be honest: can there ever be new fetishes?
reply
0 sats \ 0 replies \ @crrdlx 6 Aug
That's some next-level psyops right there. Feel free to download the software package Psyoptica - it automatically scans AI for hallucinated and fictitious software that could be used as malware or a trojan horse.
reply
0 sats \ 0 replies \ @chaoticalHeavy 6 Aug
LOL, people can't let go of their habitual ways of thinking.
reply
0 sats \ 0 replies \ @RamPl 6 Aug outlawed
stackers have outlawed this. turn on wild west mode in your /settings to see outlawed content.