Ray Clusters Hijacked and Turned Into Crypto Miners by Shadowy New Botnet

Summary

Cybersecurity firm Oligo has identified a new wave of attacks exploiting a critical flaw in Ray 2.6.3 and 2.8.0 that allows unauthenticated code execution via the job‑submission API. Threat actors, dubbed IronErn440, have been using AI‑generated payloads to infiltrate more than 230,000 internet‑exposed Ray clusters since September 2023, deploying XMRig cryptominers that run at up to 60% CPU to evade detection. The campaign also includes data exfiltration and DDoS capabilities, marking the second major abuse of this vulnerability. Anyscale, the maintainer of Ray, has not patched the flaw, leaving users responsible for securing their deployments.