Perhaps it's OK to share this now... one of our production servers [for those technical enough, they are hosting dokku applications, as docker containers] was hacked not too long ago, and the hacker installed a bitcoin miner [docker instance]. It took us a while to figure that out, and only after the server host service installed machine-learning software, which eventually figured out certain patterns... talking about AI doing its job! We assume the hacker minted himself some coins. Again for those technical enough, the hacker gained access through the secure port 22, and we are not aware of any compromised private keys - so how the hell he did it is still unclear, but he must have exploited an sshd vulnerability that we are not aware of.
So when I said a month ago that any software can be hacked, well, like with all things music, I only speak when I have real personal data.