LLMjacking Cybersecurity AI Large Language Models Hackers Cloud Security

The Dark Side of AI: How Hackers are Stealing LLM Credentials

Hackers are stealing login credentials to large language model (LLM) services, selling them on the dark web, and making a hefty profit. This new trend, dubbed LLMjacking, has significant implications for cybersecurity and the future of AI innovation.
The Dark Side of AI: How Hackers are Stealing LLM Credentials

The Dark Side of AI: How Hackers are Stealing LLM Credentials

As I delve into the world of artificial intelligence, I’m constantly amazed by the innovative applications of large language models (LLMs). However, a recent discovery has left me concerned about the security of these powerful tools. Cybersecurity researchers at Sysdig Threat Research Team have uncovered a disturbing trend: hackers are stealing login credentials to LLM services, selling them on the dark web, and making a hefty profit.

The Rise of LLMjacking

The campaign, dubbed LLMjacking, exploits a vulnerability in the Laravel Framework (CVE-2021-3129) to gain access to Amazon Web Services (AWS) credentials for LLM services. The attackers then use these credentials to access local LLM models hosted by cloud providers, including Anthropic’s Claude (v2/v3) model.

New Methods of Abuse

The researchers discovered a Python script used by the attackers to generate requests that invoke the models. The script checks credentials for ten AI services, including AI21 Labs, Anthropic, AWS Bedrock, Azure, ElevenLabs, MakerSuite, Mistral, OpenAI, OpenRouter, and GCP Vertex AI. The attackers don’t run legitimate LLM queries; instead, they do just enough to find out what the credentials are capable of and any quotas.

The Cost of LLM Abuse

The use of LLM services can be expensive, depending on the model and the amount of tokens being fed to it. By maximizing the quota limits, attackers can block the compromised organization from using models legitimately, disrupting business operations. The bill can be staggering, reaching up to $46,000 a day for LLM use.

The cost of LLM abuse can be staggering

A New Era of Cybersecurity Threats

The LLMjacking campaign is evidence that hackers are finding new ways to weaponize LLMs, beyond prompt injections and model poisoning. By monetizing access to LLMs, hackers can reap significant financial benefits while leaving victims with a hefty bill.

The era of LLM-powered cybersecurity threats has begun

Conclusion

As we continue to push the boundaries of AI innovation, it’s essential to acknowledge the darker side of LLMs. The LLMjacking campaign serves as a stark reminder of the importance of robust cybersecurity measures to protect these powerful tools. As we move forward, it’s crucial that we prioritize security and develop strategies to combat these emerging threats.

The future of AI security is uncertain

Stories from Around the Web

Wendy\U00002019s Partners with PAR Technology: A Leap into the Future of Customer Loyalty
EMA

Wendy\U00002019s Partners with PAR Technology: A Leap into the Future of Customer Loyalty

Manchester City Challenges Premier League Financial Regulations in Bold Legal Move
Premier League Pulse

Manchester City Challenges Premier League Financial Regulations in Bold Legal Move

Unleashing Creativity: Join Teen Tech Night and Discover the Future of Technology
EMA

Unleashing Creativity: Join Teen Tech Night and Discover the Future of Technology

From Pitch to Presenter: Lea Wagner on Her Journey to Becoming Germany\U00002019s Sports Darling
Premier League Pulse

From Pitch to Presenter: Lea Wagner on Her Journey to Becoming Germany\U00002019s Sports Darling

Pioneering Advances in Cancer Detection and Treatment: Texas Engineers Receive Major Grants
EMA

Pioneering Advances in Cancer Detection and Treatment: Texas Engineers Receive Major Grants

The Next Big Move? Paulo Dybala's Potential Transfer to the Premier League
Premier League Pulse

The Next Big Move? Paulo Dybala's Potential Transfer to the Premier League

Revolutionizing Cancer Care: New Tech for Early Detection and Treatment
EMA

Revolutionizing Cancer Care: New Tech for Early Detection and Treatment

Is Paulo Dybala Set to Ignite the Premier League?
Premier League Pulse

Is Paulo Dybala Set to Ignite the Premier League?

Safeguarding the Future of LLMs: The Power of Responsible AI
Older post

Safeguarding the Future of LLMs: The Power of Responsible AI

Newer post

UK Regulators Put AI Deals Under the Microscope

UK Regulators Put AI Deals Under the Microscope

Related

View all
AI Innovations: Unpacking Amazon's Strategy, DeepMind's Tools, and iGaming's Future
Amazon AI DeepMind GambleAI IGaming Technology Language Models Investment

AI Innovations: Unpacking Amazon's Strategy, DeepMind's Tools, and iGaming's Future

By Hiro Nakamura
Google's New AI-Powered Personal Coach: A Leap Toward Better Health Management
AI Healthtech Fitbit Google Personal Wellness

Google's New AI-Powered Personal Coach: A Leap Toward Better Health Management

By Tessa Blake
Unleashing the Power of Fact-Checking with Google DeepMind's SAFE
AI DeepMind Fact-Checking Technology Misinformation

Unleashing the Power of Fact-Checking with Google DeepMind's SAFE

By Poppy Sullivan
Google DeepMind Reinvents Fact-Checking with SAFE: The Future of Reliable AI Content
AI Fact-Checking DeepMind Technology LLMs

Google DeepMind Reinvents Fact-Checking with SAFE: The Future of Reliable AI Content

By Desmond Morales