Techly NewsGet the app

Get the latest tech news

‘ShadowRay’ vulnerability on Ray framework exposes thousands of AI workloads, compute power and data


For months, this flaw has allowed attackers to exploit AI production workloads, computing power, credentials and other sensitive data on Ray.

For the last seven months, this flaw has allowed attackers to exploit thousands of companies’ AI production workloads, computing power, credentials, passwords, keys, tokens and “a trove” of other sensitive information, according to new research from Oligo Security. This decision “underscores the complexity of balancing security and usability in software development,” the Oligo researchers write, “highlighting the importance of careful consideration in implementing changes to critical systems like Ray and other open-source components with network access.” The Oligo researchers concede that “shadow vulnerabilities will always exist” and that signs of exploit vary — data could be loaded from untrusted sources, firewall rules might be missing or users may not take into account dependency behavior.

Get the Android app

Or read this on Venture Beat

Read more on:

Photo of Ray

Ray

Photo of data

data

Photo of Thousands

Thousands

Related news:

News photo

The 3-2-1 backup rule is broken — here's how I safeguard my data

News photo

Hackers exploit Ray framework flaw to breach servers, hijack resources

News photo

Boeing Demands Virgin Galactic Destroy All Data From Its Failed Space Tourism Partnership

« Bill Roper unveils Lunacy Games studio with survival game demo and a new Hellgate license
Cinven Said to Pause €2 Billion Sale Process of Pet Food Maker »