Oligo Security

Self‑replicating botnet abuses Ray clusters to mine cryptocurrency, steal data and launch DDoS attacks

Cloud, Cybercrime, News, Risk, Vulnerabilities

November 19, 2025

Researchers say a campaign called ShadowRay 2.0 has been exploiting internet‑facing Ray clusters using CVE‑2023‑48022 and Ray’s orchestration features to spread a self‑replicating botnet that mines cryptocurrency, steals proprietary data and launches DDoS attacks, with attackers targeting large GPU environments and using automated discovery and multi‑stage payloads.
Researchers find widespread remote code execution risk in AI inference engines from unsafe ZMQ and pickle use

Research, Risk, Vendors, Vulnerabilities

November 15, 2025

Researchers found a recurring insecure pattern — pickle deserialization over unauthenticated ZeroMQ sockets — in multiple AI inference frameworks, creating remote code execution risks across projects including vLLM, NVIDIA TensorRT-LLM, Modular Max Server and SGLang; related research also showed browser and IDE injection risks in Cursor.
Major Vulnerabilities Discovered in Apple’s AirPlay: Millions At Risk

Cybercrime, News, Privacy, Vulnerabilities

May 4, 2025

A new report reveals critical vulnerabilities in Apple’s AirPlay that threaten billions of devices. Cybersecurity firm Oligo has identified numerous weaknesses that could enable unauthorized control, data theft, and communication interception, calling for immediate action from users and manufacturers.

Oligo Security

Self‑replicating botnet abuses Ray clusters to mine cryptocurrency, steal data and launch DDoS attacks

Researchers find widespread remote code execution risk in AI inference engines from unsafe ZMQ and pickle use

Major Vulnerabilities Discovered in Apple’s AirPlay: Millions At Risk