AI code hallucinations increase the risk of ‘package confusion’ attacks
By Dan Goodin
•
AI-generated computer code is rife with references to nonexistent third-party libraries, creating a golden opportunity for supply-chain attacks that poison legitimate programs with malicious packages that can steal data, plant backdoors, and carry out other nefarious actions, newly published research shows.
Read more at WIRED
Read More