Attackers Exploit AI Code Suggestions to Spread Malware

Attackers are taking advantage of AI code suggestions by creating and uploading non-existent software libraries that bear the names suggested by AI coding assistants. These libraries are infected with malware. This practice, known as "slopsquatting," was reported on April 12, 2025. Attackers are exploiting the software supply chain by integrating malware into these fictitious libraries.