Tech 21 February 2018Dan Taylor
Tesla becomes latest victim of ‘cryptojackers’
Elon Musk’s electric vehicle company, Tesla, has become the latest company to fall victim to hackers looking to mine cryptocurrency, according to a new report.
The Palo Alto-based company was uncovered as a victim of so-called ‘cryptojacking’ in a report published by cybersecurity company RedLock, which suggested an infiltration of Tesla systems to power the mining process.
The research team identified an infiltration in Tesla’s Kubernetes console, which was not secured by a password, as well as finding traces of hackers within Tesla’s AWS environment—a potentially significant breach of Tesla systems.
This would have allowed the hackers to access some sensitive information, with access to an Amazon S3 bucket holding significant telemetric data, according to the report. Researchers also identified a level of sophistication in the attack, which has not yet been seen in attacks of this kind.
The IP address of the mining pool was obscured by the Cloudflare CDN, a factor which the team noted would make it impossible for companies looking to detect similar attacks through IP data. It was also apparent that the hackers had attempted to keep resource usage low to avoid triggering suspicion, in yet another marker of the level of planning that appears to have gone into the attack.
Fortunately for Tesla, the team at RedLock was quick to refer the matter to them, flagging the issue immediately with the technical team there. According to the report, Tesla was able to quickly rectify the issue, preventing the hackers from accessing further resources from their system.
The development, which may come as an embarrassment for Tesla given its reputation for pioneering innovative new technologies, serves as a reminder to all businesses and large organisations over the critical importance of cybersecurity.
The report of the attack on Tesla comes amidst a flurry of this type of incident in recent months. Other victims include Showtime and Politifact.com, where hackers used the same technique to inject browser-based mining scripts under the radar.
Note: Tokens on the Bitcoin Core (segwit) Chain are Referred to as BTC coins. Bitcoin Satoshi Vision (BSV) is today the only Bitcoin implementation that follows Satoshi Nakamoto’s original whitepaper for Peer to Peer Electronic Cash. Bitcoin BSV is the only major public blockchain that maintains the original vision for Bitcoin as fast, frictionless, electronic cash.
Tech 15 January 2019
Accenture leads firms in assessment for blockchain services
Professional services company Accenture was among the firms assessed by Everest Group as most capable of delivering blockchain solutions successfully.
Tech 15 January 2019
Cryptojackers remain biggest malware threat
Cryptocurrency mining remains the most prevalent use for malware distribution, according to the latest study by Check Point Software Technologies Ltd.
Tech 14 January 2019
Smart-card based wallets for a smarter, more secure wallet
Wright points out that a smart-card application tied to a wallet can offer better security for crypto assets while also allowing for private system authentication.