☢️ Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign

｢ Upon successful exploitation, the compromised hosts are added to a cryptomining operation that mines Monero via XMRig and Conflux via lolMiner, as well as to a Hysteria V2 botnet. Both of them are centrally managed through a Flask-based command-and-control (C2) dashboard ｣
https://thehackernews.com/2026/04/over-1000-exposed-comfyui-instances.html

#cybersecurity #ComfyUI