A publicly exposed Ollama instance was reportedly used as a reasoning engine in an automated offensive workflow, showing how legitimate software can be folded into intrusion tooling when access controls are weak.