Techly NewsGet the app

Get the latest tech news

Slopsquatting


Slopsquatting is a type of cybersquatting. It is the practice of registering a non-existent software package name that a large language model (LLM) may hallucinate in its output, whereby someone unknowingly may copy-paste and install the software package without realizing it is fake.[1] Attempting to install a non-existent package should result in an error, but some have exploited this for their gain in the form of typosquatting.[2] The name is a portmanteau of "slop" and "typosquatting".[3] History[edit] In 2023, security researcher Bar Lanyado noted that LLMs hallucinated a package named "huggingface-cli".[4][5][6] While this name is identical to the command used for the command-line version of HuggingFace Hub, it is not the name of the package.

Toggle the table of contents

Get the Android app

Or read this on Hacker News

« Qwant and Ecosia debut Staan, a European search index that aims to take on Big Tech
LLM Inflation »