What is the primary security risk associated with OpenWebUI instances?

The primary risk involves OpenWebUI instances lacking authentication, which allows attackers to compromise servers for cryptocurrency mining and credential theft.

How did the malware on compromised OpenWebUI servers evade detection?

The malware evaded detection by employing advanced techniques such as reversing byte sequences, decoding Base64 data, and decompressing using Zlib.

What steps are recommended to secure OpenWebUI instances?

Recommendations include enabling authentication with administrator approval for new signups, utilizing IP whitelisting, setting up a proxy for API authentication, and monitoring for unauthorized uploads and models.

Home / Technology / AI Servers Hijacked for Crypto Mining & Data Theft

AI Servers Hijacked for Crypto Mining & Data Theft

20 Mar

•

Summary

98 OpenWebUI instances discovered with no authentication.
Compromised servers secretly mined crypto and stole data.
Malware used advanced techniques to evade detection.

AI Servers Hijacked for Crypto Mining & Data Theft

A significant security vulnerability has been discovered in OpenWebUI, a popular open-source interface for interacting with large language models. Researchers identified 98 instances of OpenWebUI that were left completely unprotected by authentication measures. This oversight left these servers exposed to malicious actors.

Within the discovered vulnerable instances, 45 had already been compromised. These compromised servers were found to be actively mining cryptocurrency and stealing sensitive user credentials. The malware utilized complex evasion tactics, including byte reversal and data decompression, to avoid detection by security systems.

Further analysis revealed that 33 of the unprotected servers exhibited configuration conflicts, while only 11 appeared to be functioning normally. The malicious campaign also incorporated Discord webhooks, notifying developers upon each new server compromise. Security recommendations include enabling authentication, implementing IP whitelisting, and setting up monitoring for unauthorized uploads and model execution.

Disclaimer: This story has been auto-aggregated and auto-summarised by a computer program. This story has not been edited or created by the Feedzop team.