Tesla cloud resources are hacked to run cryptocurrency-mining malware

by
Dan Goodin
from Ars Technica - All content on (#3GBPB)
GettyImages-131282111-800x534.jpg

Enlarge (credit: Scott Olson | Getty Images)

Add Tesla to the legion of organizations that have been infected by cryptocurrency-mining malware.

In a report published Tuesday, researchers at security firm RedLock said hackers accessed one of Tesla's Amazon cloud accounts and used it to run currency-mining software. The researchers said the breach in many ways resembled compromises suffered by Gemalto, the world's biggest SIM card maker, and multinational insurance company Aviva. In October, RedLock said Amazon and Microsoft cloud accounts for both companies were breached to run currency-mining malware after hackers found access credentials that weren't properly secured.

The initial point of entry for the Tesla cloud breach, Tuesday's report said, was an unsecured administrative console for Kubernetes, an open source package used by companies to deploy and manage large numbers of cloud-based applications and resources.

Read 5 remaining paragraphs | Comments

index?i=XzLew-0tKrw:wATKIHDxn9U:V_sGLiPB index?i=XzLew-0tKrw:wATKIHDxn9U:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments