HP-Branded Servers Hijacked to Mine $110,000 Worth of Cryptocurrency

HP

Hackers lately took management of a gaggle of HP-branded servers and used them to remotely mine a cryptocurrency referred to as raptoreum, in line with studies. This resulted within the compromised cluster of HP machines turning into the largest contributor to the full mining pool of the cryptocurrency, permitting attackers to rake in $110,000 price. The cash are stated to have been mined between December 9 and December 17.

HP Servers Suffer Cryptojacking Attack

A bunch of HP servers working for an undisclosed firm was attacked by hackers that managed to take management of the {hardware} and repurpose it to mine cryptocurrency. The crypto chosen by the hackers was referred to as raptoreum, a coin within the high 1,000 by market cap that takes benefit of an algorithm referred to as Ghostrider, mixing PoW (proof-of-work) and PoS (proof-of-stake) consensus mechanisms.

The server cluster began mining raptoreum on December 9, and on the time, it offered extra hash energy than all different events mixed on the Raptoreum blockchain. This allowed the attackers to rake in additional than $110,000 price of raptoreum within the interval between December 9 and December 17.

The server group disappeared from the Raptoreun community on December 17, a sign that they might have been patched to get rid of the risk after it was detected.


Log4j Leveraged

The assault used a lately found vulnerability referred to as Log4shell, which permits attackers to realize management of a system remotely. Log4shell makes use of Log4j, which is a registry library used extensively in Apache-based programs. This vulnerability was found in early December, and on this case, it was leveraged to cross the execution of a crypto mining software program.

The vulnerability has been categorized as important by its discoverers on account of how widespread its utilization is, even in relation to large operations like Microsoft and IBM. While the software program has been patched in a few of its implementations, investigators are nonetheless discovering new methods by which it may be leveraged. It was lately found that the software program can be weak to native assaults, which means that the servers could be executing code remotely with out being linked to the web.

During the primary half of this 12 months, cryptojacking assaults have decreased for the primary time since 2018, in line with a report titled “Cloud Thread Report,” issued by Unit 42, a safety consulting agency. However, in a follow-up report, the agency additionally found that 63% of third-party code templates utilized in constructing cloud infrastructure contained insecure configurations that might result in shedding management of the {hardware}.

What do you concentrate on the assault on HP-branded servers to mine raptoreum? Tell us within the feedback part beneath.

Add a Comment

Your email address will not be published. Required fields are marked *