Researchers at Pillar Security say threat actors are accessing unprotected LLMs and MCP endpoints for profit. Here’s how CSOs can lower the risk.

InfoWorld is a source of news, analysis, and commentary on technology trends, IT strategies, and business innovation. With a focus on enterprise technology and digital transformation, InfoWorld offers insights and guidance for IT decision-makers, software developers, and technology professionals. From  articles on cloud computing and cybersecurity to product reviews and industry trends, InfoWorld helps readers navigate the complexities of modern IT environments and make informed decisions to drive business success.

InfoWorld

Security researchers have discovered criminal campaigns hijacking exposed AI infrastructure at scale. Threat actors scan for unprotected LLM endpoints and Model Context Protocol servers using tools like Shodan, then resell stolen API access through underground marketplaces. In recent weeks, honeypots captured 35,000 attack sessions targeting exposed AI infrastructure. Common targets include Ollama instances on port 11434, OpenAI-compatible APIs, and MCP servers running without authentication. Organizations should immediately enable authentication on all LLM endpoints, audit MCP server exposure, implement rate limiting, and block known malicious infrastructure to prevent unauthorized compute usage and data exfiltration.

Crooks are hijacking and reselling AI infrastructure: Report