Electric Sedan and SUV Manufacturer, Tesla’s Cloud account was attacked by cryptocurrency mining malware.
Cybersecurity firm RedLock said that -The Automaker’s Kubernetes administration console was not password protected and hence easily available for hackers. Kubernetes is a Google-designed system aimed at optimizing cloud applications, which left access credentials forTesla’s Amazon Web Services (AWS) account exposed, and hackers setup their cryptocurrency mining software “Stratum’ to mine cryptocurrency using the cloud’s computing power.
The Tesla spokesperson reported that- “We maintain a bug bounty program to encourage this type of research, and we addressed this vulnerability within hours of learning about it,”
RedLock did not specify which Mining pool has attacked Tesla in the cyber breach. unlike previous attack the hackers did not use public mining pool, rather they use the mining pool software and hide it behind CloudFlare, which hide IP address of their mining pool server. To further hide their actions, the hackers ensured that CPU usage remained low during the hack.
Tesla said that it did not see any initial impact on customer data protection or the safety and security of its vehicles.”The impact seems to be limited to internally-used engineering test cars only, and our initial investigation found no indication that customer privacy or vehicle safety or security was compromised in any way.”
“The message from this research is loud and clear — the unmistakable potential of cloud environments is seriously compromised by sophisticated hackers identifying easy-to-exploit vulnerabilities,” Gaurav Kumar, CTO of RedLock, said in a statement.
Steve Anderson is an Australian crypto enthusiast. He is a specialist in management and trading for over 5 years. Steve has worked as a crypto trader, he loves learning about decentralisation, understanding the true potential of the blockchain.
Join the official channel of thecoinrepublic, For the latest news updates: https://t.me/thecoinrepublic