Poor cloud security let hackers mine cryptocurrency on Teslas dime

The strange new breed of malicious cryptocurrency miners spares no one, it seems: Tesla is the latest to be struck by this trendy form of hackery. A poorly secured cloud computing setup let them waltz right in.

It’s merely the latest example of several detected by cloud security outfit RedLock, which has tracked a series of Kubernetes admin consoles wide open to anyone seeming. Not even password-protected.

If RedLock could find them, so could hackers — and they did. By logging in and carefully disguising the cloud computing utilization and associated traffic, they managed to quietly mine utilizing Tesla’s AWS pod for … well, it’s anybody’s guess how long. And given the volatility of cryptocurrency marketplaces these days, it’s also anybody’s guess how much and of what coin.

Obviously, the solution here is to have literally any kind of security on your infrastructure. But hackers are clever and companies should also be watching for unusual high levels of traffic and other usage indicators, and also monitor for non-standard user behaviours. But severely, at least a password.

Make sure to visit: CapGeneration.com

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s