Synology NAS Remotely Hacked To Mine $620K In DogeCoin

Anonymous Coward
in security on (#3PA)
story imageFrom ThreatPost via Soylent-not-a-food-trademark-infringing-site, a single criminal hacker planted trojans on Synology NAS units around the world and managed to use the little boxes to mine $620,000 worth of "DogeCoin", the cuter version of the BitCoin "virtual currency".

This, much more than the SuperMicro vulnerability, tells me I'm living in strange new times indeed. A home network-storage appliance used over the Internet to create wealth out of nothing but electricity running some decryption code. These are concepts that just didn't even exist a short time ago.

Had the hacker been just a little more conservative in resource utilization, the scheme may have gone undiscovered for much longer. The jig was up only after Synology users complained about performance to tech support! (Clearly, no one, anywhere, ever checks their router and firewall logs for unusual destinations).

I find this interesting as I had just been reading Ars Technica's new writeup of DIY NAS solutions as alternatives to the expensive fixed purpose NAS devices (some interesting alternatives mentioned in the comments there).

These are concepts that *DID* exist decades ago (Score: 1)

by on 2014-06-23 18:20 (#28C)

Micropayment systems, things like hashcash, and some anti-spam proposals, always depended on these kinds of computations being done. They weren't new 20+ years ago when I first heard of them, so they definitely aren't new now.

And the concept of subversively getting large numbers of unknowing volunteers to contribute to the efforts is even older - it was originally called the "chinese television" (the idea being that there are hundreds of millions of them, so great for embarassingly parallel tasks).

So git orf moi larn!
Post Comment
75, seventy eight, 13 or fifty four: which of these is the largest?