CATEGORIES
home News

Hackers Carjack Tesla's Amazon Cloud To Mine Cryptocurrency

by Brandon HillTuesday, February 20, 2018, 03:15 PM EDT
It looks as though few people (or companies) are truly safe from cryptocurrency miners. Hackers have attempted various avenues to mine for Monero, with the latest crop of evildoers targeting Tesla's Kubernetes console, which unfortunately was not password protected.

Once the Kubernetes console was compromised, the intruders were able to obtain credentials for accessing Tesla's Amazon S3 account, and the private data that was stored with the service. However, it doesn't appear that Tesla's data was the target of the hackers. Instead, they wanted to use the company's Amazon S3 resources for cryptocurrency mining.

tesla model 3

According to RedLock, which first discovered the intrusion, the hackers installed mining pool software and used a script that connected to an unlisted destination. This made it rather difficult for malicious activity to be detected while sniffing a standard IP/domain. In addition, the hackers took additional preventative measures by hiding the IP address of the mining pool server behind the CloudFare CDN service. But they of course didn't stop there.

"The mining software was configured to listen on a non-standard port which makes it hard to detect the malicious activity based on port traffic," writes RedLock. "Lastly, the team also observed on Tesla’s Kubernetes dashboard that CPU usage was not very high. The hackers had most likely configured the mining software to keep the usage low to evade detection."

Even though that hackers did their best to cover their tracks to avoid detection, RedLock's Cloud Security Intelligence (CSI) team was still able to discover the scheme and contacted Tesla. According to RedLock, Tesla was very receptive to the CSI team's findings, and the "issue was quickly rectified."

For its part, Tesla has issued the following statement to calm the fears of customers who might think that their personal data could have been compromised:

We maintain a bug bounty program to encourage this type of research, and we addressed this vulnerability within hours of learning about it. The impact seems to be limited to internally-used engineering test cars only, and our initial investigation found no indication that customer privacy or vehicle safety or security was compromised in any way.

Chances are that Tesla probably password protected its Kubernetes console following this latest incident...

Tags:  Tesla, Elon Musk, (NASDAQ:TSLA), cryptocurrency, monero, kubernetes, redlock
TOP CONVERSATIONS
Your Next PC Platform?
More Results
KEEP INFORMED
SITE

Home

Reviews

News

Blogs

Full Site

Sitemap

CATEGORIES

PC Components

Systems

Mobile

IT Infrastructure

Leisure

Videos

COMPANY

About

Advertise

News Tips

Contact

Privacy And Terms

HotTech

MORE

Accessibility

Shop

STAY CONNECTED

Twitter

Facebook

YouTube

RSS

As an Amazon and Howl Technologies Associate, HotHardware earns a commission from qualifying purchases made on this site. This site is intended for informational and entertainment purposes only. The contents are the views and opinion of the author and/or his associates. All products and trademarks are the property of their respective owners. Reproduction in whole or in part, in any form or medium, without express written permission of Hot Hardware, Inc. is prohibited. All content and graphical elements are Copyright © 1999 - 2024 David Altavilla and Hot Hardware, Inc.
All rights reserved. Privacy and Terms - Accessibility Commitment