Type
Campaign
Actors
Pub. date
May 6, 2025
Initial access
Software misconfig
Impact
Unknown
Observed techniques
Observed tools
Targeted technologies
References
Status
Finalized
Last edited
May 11, 2025 12:05 PM
Baidu reports an exploitation campaign targeting publicly-exposed instances of ComfyUI. ComfyUI provides a GUI for AI image generation workflows. By default, it does not implement authentication. A popular extension, ComfyUI-Manager, allows an attacker to execute remote code via malicious model files. The attacker used a malicious model file, distributed on HuggingFace, to deploy a vshell based trojan with Cloudflare used as C2.