Beware of AI Pickpockets: Pickai Backdoor Spreading Through ComfyUI Vulnerability
Essential information
- Published
- 13/06/2025 07:48
- Modified
- 13/06/2025 08:29
- Tags
- 2025-06-13 ai data theft backdoor c2 comfyui evasion persistence pickai supply chain attack vulnerability
- Related entities
- 9 observables, 8 techniques (mitre), 1 malware, 5 others
Description
A new backdoor named Pickai is exploiting ComfyUI vulnerabilities to spread and steal sensitive AI data. Developed in C++, Pickai offers remote command execution and reverse shell capabilities with strong persistence and evasion techniques. It uses multiple C2 servers for redundancy and has infected nearly 700 devices globally. The malware is hosted on Rubick.ai, an AI e-commerce platform serving major brands, posing significant supply chain risks. Pickai employs various obfuscation methods, including string encryption, process disguise, and multiple persistence mechanisms. Its network communication uses a three-tier timing strategy for C2 communication and device information reporting.