Tech »  Topic »  Hackers are going after top LLM services by cracking misconfigured proxies

Hackers are going after top LLM services by cracking misconfigured proxies

10 hours ago   techradar.com
(Image credit: Getty Images / Issarawat Tattong)
  • GreyNoise logged 91,000 attack sessions against exposed AI systems between Oct 2025 and Jan 2026
  • Campaigns included tricking servers into “phoning home” and mass probing to map AI models
  • Malicious actors targeted misconfigured proxies, testing OpenAI, Gemini, and other LLM APIs at scale

Hackers are targeting misconfigured proxies in order to see if they can break into the underlying Large Language Model (LLM) service, experts have warned.

Researchers at GreyNoise recently set up a fake, exposed AI system to see who would try to interact with it.

Between October 2025, and January 2026, they logged more than 91,000 attack sessions which exposed two attack campaigns.

Anthropic claims Chinese hackers hijacked Claude to launch AI-orchestrated and automated cyberattacksNew research reveals AI is fueling an 'unprecedented surge in cloud security risks'Malicious LLMs are letting even unskilled hackers to craft dangerous new malware ...
Copyright of this story solely belongs to techradar.com . To see the full text click HERE