Tech 21 February 2018

Dan Taylor

Tesla becomes latest victim of ‘cryptojackers’

Elon Musk’s electric vehicle company, Tesla, has become the latest company to fall victim to hackers looking to mine cryptocurrency, according to a new report.

The Palo Alto-based company was uncovered as a victim of so-called ‘cryptojacking’ in a report published by cybersecurity company RedLock, which suggested an infiltration of Tesla systems to power the mining process.

The research team identified an infiltration in Tesla’s Kubernetes console, which was not secured by a password, as well as finding traces of hackers within Tesla’s AWS environment—a potentially significant breach of Tesla systems.

This would have allowed the hackers to access some sensitive information, with access to an Amazon S3 bucket holding significant telemetric data, according to the report. Researchers also identified a level of sophistication in the attack, which has not yet been seen in attacks of this kind.

The IP address of the mining pool was obscured by the Cloudflare CDN, a factor which the team noted would make it impossible for companies looking to detect similar attacks through IP data. It was also apparent that the hackers had attempted to keep resource usage low to avoid triggering suspicion, in yet another marker of the level of planning that appears to have gone into the attack.

Fortunately for Tesla, the team at RedLock was quick to refer the matter to them, flagging the issue immediately with the technical team there. According to the report, Tesla was able to quickly rectify the issue, preventing the hackers from accessing further resources from their system.

The development, which may come as an embarrassment for Tesla given its reputation for pioneering innovative new technologies, serves as a reminder to all businesses and large organisations over the critical importance of cybersecurity.

The report of the attack on Tesla comes amidst a flurry of this type of incident in recent months. Other victims include Showtime and Politifact.com, where hackers used the same technique to inject browser-based mining scripts under the radar.

Note: Tokens on the Bitcoin Core (SegWit) chain are referenced as BTC coins; tokens on the Bitcoin Cash ABC chain are referenced as BCH, BCH-ABC or BAB coins.

Bitcoin Satoshi Vision (BSV) is today the only Bitcoin project that follows the original Satoshi Nakamoto whitepaper, and that follows the original Satoshi protocol and design. BSV is the only public blockchain that maintains the original vision for Bitcoin and will massively scale to become the world’s new money and enterprise blockchain.

COMMENT

latest news

Google Play warns customers of fake cryptocurrency apps

Tech 24 May 2019

Google Play warns customers of fake cryptocurrency apps

Google has caught two apps that were pretending to be popular crypto wallets, one of which was trying to steal user funds.

Read More
Rabobank opts to close cryptocurrency account plans

Tech 24 May 2019

Rabobank opts to close cryptocurrency account plans

Rabobank have decided not to offer crypto wallets, citing regulatory uncertainty and skepticism from their customers.

Read More
Proxicoin to allow anyone to become a movie producer

Tech 24 May 2019

Proxicoin to allow anyone to become a movie producer

A big investment in Proxicoin promises that it will offer new investment opportunities to film, TV and music fans.

Read More
[data-clipboard-demo]
[data-clipboard-demo]
[data-clipboard-demo]
[data-clipboard-demo]
[data-clipboard-demo]
[data-clipboard-demo]
[data-clipboard-demo]
[data-clipboard-demo]
[data-clipboard-demo]
[data-clipboard-demo]