Dossier
NadMesh
Coverage of NadMesh in the Nexus archive.
- New NadMesh Botnet Hunts Exposed AI Services for Cloud Keys and Kubernetes Tokens
A Go-based botnet named NadMesh is exploiting exposed AI services to steal cloud keys and Kubernetes tokens. The operator's dashboard reports 3,811 unique AWS keys collected, using Shodan to scan AI tools like ComfyUI, Ollama, and Gradio that teams often deploy without proper security.