ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet

ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet

Oligo Security has identified ShadowRay 2.0, a malware campaign exploiting a critical unpatched vulnerability (CVE-2023-48022, CVSS 9.8) in the Ray AI framework to hijack NVIDIA GPU clusters. The exploit uses unauthenticated Ray Job Submission APIs to spread cryptomining and DDoS malware across 230,500 exposed servers.

Why This Matters

Ray’s design assumes trusted, isolated networks, but the flaw enables attackers to exploit misconfigured public deployments. This creates a botnet capable of autonomous lateral movement, leveraging Ray’s orchestration features for cryptojacking and DDoS attacks. The scale of exposure—over 230,000 vulnerable servers—highlights a critical gap between theoretical security models and real-world deployment practices.

Key Insights

• “8-hour App Engine outage, 2012”: Not applicable (context lacks this metric)
• “Sagas over ACID for e-commerce”: Not applicable (context focuses on Ray’s API exploitation, not distributed transactions)
• “Temporal used by Stripe, Coinbase”: Not applicable (context does not mention Temporal)

Practical Applications

• Use Case: ShadowRay 2.0 uses Ray’s orchestration to pivot laterally, execute reverse shells, and persist via cron jobs.
• Pitfall: Exposing Ray Dashboard ports (default 8265) to the internet creates a direct attack vector for unauthenticated API exploitation.

References:

• https://thehackernews.com/2025/11/shadowray-20-exploits-unpatched-ray.html