LLMjacking: Hackers Hijack Access to Powerful AI Models
LLMjacking Reaches a New LevelCybercriminals are actively stealing API keys from OpenAI, AWS, Azure, and DeepSeek to gain unauthorized access to expensive AI models. Over 55 keys for DeepSeek alone have already been compromised.
The Dark Web is Flooded with Black Market ServicesHacked API keys are being sold on underground marketplaces, while proxy servers help attackers cover their tracks. On one such proxy, users burned through $50,000 worth of tokens in just 4.5 days.
A New Form of "Cryptojacking"?Victims of these attacks are being hit with massive bills for AI model usage—similar to past cases of covert cryptocurrency mining. In one instance, Claude 3 Opus consumed nearly $39,000 in unauthorized usage, and these attacks are only esc
alating.