Entités

AI21 Labs models

Incidents implicated systems

Incident 8982 Rapports
Alleged LLMjacking Targets AI Cloud Services with Stolen Credentials

2024-05-06

Attackers reportedly exploited stolen cloud credentials obtained through a vulnerable Laravel system (CVE-2021-3129) to allegedly abuse AI cloud services, including Anthropic’s Claude and AWS Bedrock, in a scheme referred to as “LLMjacking.” The attackers are said to have monetized access through reverse proxies, reportedly inflating victim costs to as much as $100,000 per day. Additionally, they allegedly bypassed sanctions, enabled LLM models, and evolved techniques to evade detection and logging.

Plus

Entity

LLMjacking Attackers Exploiting Laravel

Plus
Entity

Entities engaging in Russian sanctions evasion

Plus
Entity

OAI Reverse Proxy Tool Creators

Plus
Entity

LLMjacking Reverse Proxy Tool Creators

Plus
Entity

Laravel users

Plus
Entity

Laravel CVE-2021-3129 users

Plus
Entity

Cloud LLM users

Plus
Entity

Cloud LLM service providers

Plus
Entity

OpenRouter services

Plus
Entity

OpenAI models

Plus
Entity

Mistral-hosted models

Plus
Entity

MakerSuite tools

Plus
Entity

GCP Vertex AI models

Plus
Entity

ElevenLabs services

Plus
Entity

Azure-hosted LLMs

Plus
Entity

AWS Bedrock-hosted models

Plus
Entity

Anthropic Claude (v2/v3)

Plus