ComfyUI exploitation campaign

Baidu reports an exploitation campaign targeting publicly-exposed instances of ComfyUI. ComfyUI provides a GUI for AI image generation workflows. By default, it does not implement authentication. A popular extension, ComfyUI-Manager, allows an attacker to execute remote code via malicious model files. The attacker used a malicious model file, distributed on HuggingFace, to deploy a vshell based trojan with Cloudflare used as C2.