Langsung ke konten utama

Google Alerts Users About Malicious Actors Using Cloud for Cryptocurrency Mining

google cloud

Google has warned users about the use of its Google Cloud platform by malicious actors to mine cryptocurrencies. In its latest Cloud Threat Intelligence report titled “Threat Horizons,” which provides users with security insights, the company informed that 86% of the compromised instances on Google Cloud platforms were being used to mine cryptocurrencies. Most of the accounts compromised were secured with weak passwords or with no password at all.

Google Cloud Used to Mine Cryptocurrencies

Software giant Google is alerting users about malicious actors using compromised Google Cloud accounts for mining cryptocurrency. Google Cloud accounts have access to processing power that can be easily redirected to perform malicious tasks. According to the first “Threat Horizons” report, issued by Google to raise awareness about the security weaknesses in its platform, 86% of the compromised accounts are used for this purpose.

The report states that cryptocurrency mining in the cloud causes high usage of CPU and/or GPU power. It also makes reference to the mining of alternative cryptocurrencies like Chia, which use storage space as a mining resource.

Causes and Mitigation

The first cause of the compromise of the examined Google Cloud instances was poor security due to different issues. One of these issues was a weak or inexistent password to access the platform, or a lack of API validation in the instance. With no basic security measures applied, a malicious actor can easily take hold of these platforms. Other cloud platforms are also facing similar problems.

Most of the studied instances downloaded the cryptocurrency mining software in less than 22 seconds after being compromised. This shows that there are systematic attacks of these unsecured instances, with the sole intention being to use them for this purpose. Also, the malicious actors seem to be tracking these unsecured Google Instances actively, given that 40% of the unsecured instances were compromised within eight hours of being deployed. Google stated:

This suggests that the public IP address space is routinely scanned for vulnerable Cloud instances. It will not be a matter of if a vulnerable Cloud instance is detected, but rather when.

To mitigate these risks, the report recommends users follow basic best security practices and implement container analysis and web scanning, tools that will probe the system for security weaknesses using different techniques like crawling.

What do you think about the use of Google Instances to mine cryptocurrency by malicious actors? Tell us in the comments section below.



source https://news.bitcoin.com/google-alerts-users-about-malicious-actors-using-cloud-for-cryptocurrency-mining/

Komentar

Postingan populer dari blog ini

Massive Crypto ETF Exodus: $742M Vanishes Overnight

Recent data reveals that spot bitcoin (BTC) and ether (ETH) exchange-traded funds (ETFs) experienced collective net outflows amounting to $742.24 million. Blackrock, Valkyrie, and Grayscale Among Crypto ETFs Hit by $742M Reduction On Wednesday, U.S.-based bitcoin and ethereum ETFs faced significant reductions, with bitcoin ETFs losing $582.90 million and ether ETFs seeing $159.34 million in […] source https://news.bitcoin.com/massive-crypto-etf-exodus-742m-vanishes-overnight/

What Are AI Agent Coins? Utility, Autonomy, and Blockchain Power

Over the past year, the fusion of artificial intelligence (AI) and cryptocurrencies has sparked a significant rise in the prominence of AI-centric digital assets. Now, a fresh subset is emerging from obscurity—AI agent coins—a category of cryptocurrencies linked to initiatives employing autonomous AI agents for tasks within the blockchain realm. AI Agent Coins: The Emerging […] source https://news.bitcoin.com/what-are-ai-agent-coins-utility-autonomy-and-blockchain-power/

Kucoin Hacked for $150 Million in Bitcoin; Bitfinex and Tether Freeze $33 Million of the Stolen Funds

Cryptocurrency exchange Kucoin may have been hacked for $150 million in bitcoin and multiple ERC20 tokens. The Singapore-based exchange confirmed the September 25 security breach, but did not disclose the amount stolen. “Bitcoin, ERC-20 and, other tokens in Kucoin’s hot wallets were transferred out of the exchange,” said Kucoin in an update on Saturday. Meanwhile, Bitfinex and Tether, issuers of the centralized stablecoin USDT , immediately froze a combined $33 million worth of USDT suspected to be part of the funds looted in the Kucoin hack – an action that has stirred questions around the influence of centralized platforms. Paolo Ardoino, chief technology officer of both entities, tweeted that Bitfinex froze $13 million USDT on EOS as part of the hack. Tether froze $20 million USDT “sitting on this ethereum address as a precautionary measure,” he said. In its update, Kucoin maintains that funds in its cold wallets (offline storage, which is less susceptible to hacks) ar...