mediumexperimentalLinuxAI/MLNetworkT1071.001

LLM Service Network Connection To External Vector Or Search Platform

Detects LLM service processes connecting to external vector database or search platforms (Pinecone, Weaviate, Qdrant, Milvus, Elasticsearch) outside the approved OCI baseline. Unapproved connections may indicate data exfiltration or use of attacker-controlled vector stores.

Updated Jan 15, 2025 · Detection Engineering Team

llmvector-embeddinglinuxnetworkowasp-llm08

Problem Statement

Connecting to external vector search platforms from an LLM service can route retrieval queries through attacker-controlled infrastructure, enabling poisoned context injection or query data exfiltration.

Sample Logs

{"timestamp":"2025-01-15T16:28:44Z","computer_name":"llm-host-02","user":"llm_svc","image":"/opt/llm/app/rag_client.py","destination_hostname":"attacker-qdrant.cloud","destination_ip":"198.51.100.22","destination_port":6333}

Required Fields

image

destination_hostname

destination_ip

user

computer_name

False Positives

·Approved LLM deployments that use cloud-hosted vector database services as the retrieval backend

Tuning Guidance

Add approved external vector database hostnames to the filter. Alert on any first-seen vector database endpoint.