https://cybercrime.club/tags/llm/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usSun, 26 Apr 2026 11:08:41 -0400https://cybercrime.club/posts/lmdeploy-cve-2026-33626-ssrf-aws-imds-13-hour-exploitation/Sun, 26 Apr 2026 11:08:41 -0400https://cybercrime.club/posts/lmdeploy-cve-2026-33626-ssrf-aws-imds-13-hour-exploitation/A 7.5-severity SSRF in Shanghai AI Lab's LMDeploy LLM serving toolkit was hit in the wild within 12h31m of the GitHub advisory. Sysdig's honeypot caught an attacker using the vision-language image loader to scrape AWS instance metadata, then pivot to internal Redis and MySQL.vulnerabilities