AI framework vulnerability is being used to compromise enterprise servers (CVE-2023-48022) | allinfosecnews.com

March 27, 2024, 11:02 a.m. | Zeljka Zorz

Help Net Security www.helpnetsecurity.com

Attackers are leveraging a vulnerability (CVE-2023-48022) in Anyscale’s Ray AI software to compromise enterprise servers and saddle them with cryptominers and reverse shells. “To our knowledge, the attack started 7 months ago,” Avi Lumelsky, a researcher at Oligo Security, told Help Net Security. “We observed hundreds of compromised clusters in the past three weeks alone. Each cluster uses a public IP address, and most clusters contain hundreds to thousands of servers. There are hundreds of … More →

The post …

ai software anyscale attack attackers authentication bishop fox clusters compromise compromised cryptominers cve don't miss enterprise framework help net security hot stuff knowledge machine learning oligo oligo security ray researcher reverse security servers shells software vulnerability

More from www.helpnetsecurity.com / Help Net Security

US exposes scheme enabling North Korean IT workers to bypass sanctions 1 day, 20 hours ago | www.helpnetsecurity.com

bypass charges companies department +20

The importance of access controls in incident response 1 day, 22 hours ago | www.helpnetsecurity.com

access access control access controls access management +25

Kroll expands its document review capabilities to accelerate incident response 1 day, 23 hours ago | www.helpnetsecurity.com

accelerate capabilities carriers data +17

GitLab unveils AI capabilities to help organizations better secure their software 2 days ago | www.helpnetsecurity.com

ai capabilities build capabilities chat +17

The IT skills shortage situation is not expected to get any better 2 days, 3 hours ago | www.helpnetsecurity.com

american cybersecurity growth idc +16

Organizations struggle to defend against ransomware 2 days, 3 hours ago | www.helpnetsecurity.com

center critical infrastructure cybersecurity director +20

Too many ICS assets are exposed to the public internet 2 days, 4 hours ago | www.helpnetsecurity.com

assets attack attack surface attack surface management +21

New infosec products of the week: May 17, 2024 2 days, 4 hours ago | www.helpnetsecurity.com

alerts anti-spam automated broadband +20

Critical Git vulnerability allows RCE when cloning repositories with submodules (CVE-2024-32002) 2 days, 20 hours ago | www.helpnetsecurity.com

attackers can clone cloning +26

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Senior - Penetration Tester

@ Deloitte | Madrid, España

View on infosec-jobs.com

Associate Cyber Incident Responder

@ Highmark Health | PA, Working at Home - Pennsylvania

View on infosec-jobs.com

Senior Insider Threat Analyst

@ IT Concepts Inc. | Woodlawn, Maryland, United States

View on infosec-jobs.com