Hacker makes $84k hijacking Bitcoin mining pool

By -


A hacker generated $84,000 worth of the Bitcoin cryptocurrency by gaining access to a Canadian internet provider and diverting the computing power of private Bitcoin “mines”.

The malicious activity was discovered by researchers at Dell SecureWorks, a cyber intelligence company, after noticing that some of their own mining power stolen. The team traced the activity back to an internet service provider (ISP) in Canada, which remains anonymous.

It remains unclear exactly how the hacker managed to gain access to the ISP’s infrastructure to reroute users’ mining power to their own pool.

Speaking to the Guardian at the BlackHat security conference in Las Vegas, Pat Litke from SecureWorks suggested they may have been a current or former employee at the ISP, or an external hacker who had breached the company.

By gaining administrative access to a router at the ISP, they abused a service known as the Border Gateway Protocol (BGP) that is designed to connect different networks on the internet together. By compromising BGP functions at the ISP, the hacker was able to send traffic destined for a legitimate mining pool to his own pool.

The hijacker actually set up two malicious pools. One was used to send miners to a second pool. “By convincing the miners to connect to this second malicious pool rather than the original malicious pool, the hijacker filters out traffic that has already been hijacked so it is not hijacked again,” the researchers’ paper read.

Users originally complained about the illicit activity on internet forums in March, but Litke and his colleague Joe Stewart said the attacks dated back to February. The hacker also stole mining power to release other cryptocurrencies, including Dogecoin, HoboNickels and WorldCoin. As many as 8,000 Dogecoins, equivalent to $1.42, were lost at one small-time miner as a result of the hack.

To prevent similar attacks in the future, Litke and Stewart recommended pool servers use the Secure Sockets Layer (SSL) encryption protocol. If the affected pool had done so here, it would have prevented the theft, they said.

The researchers were impressed by the ingenuity of the hacker, saying it was a “great idea”, at least from a criminal perspective. The attacker was specifically targeting those miners who had invested in souped-up hardware designed to mine Bitcoin.

The victims will receive no compensation and Litke said the chance of any prosecution was very slim, due to the difficulty of tracking the perpetrator.

Source http://www.theguardian.com/technology/2014/aug/07/hacker-bitcoin-mining-pool-internet-service-providers-canada-dell

Comments

Post a Comment

Popular posts from this blog

How a cyber attack hampered Hong Kong protesters

By Explorer -
Image
Massive public protests taking place in Hong Kong over the past week are aimed at a new extradition law, known as the Fugitive Offenders Ordinance , that would see accused criminals extradited to mainland China to face prosecution. Hongkongers feel the law could be used to legalise the kidnapping of people who express views, and act in ways, that are not popular with the Chinese government . The same law could also be used to extradite tourists and visitors to China who are arrested on suspicion of having committed these crimes. Protesters want the bill scrapped. For now, debate of the legislation has been postponed . Organisers say one million people turned out for the protests, while police estimate the number was around 240,000. Either way, it was a significant number of Hong Kong’s 7.5 million population. Commentators on Twitter remarked on how well organised the protesters were. So, how did they do it? Protesters across the world are using n
Read more

‘Not Hospital, Al-Shifa is Hamas Hideout & HQ in Gaza’: Israel Releases ‘Terrorists’ Confessions’ | Exclusive

By Explorer -
 According to a video of interrogation of "Hamas terrorists" released by Israel Security Agency Shin Bet, accessed exclusively by News18, "The Shifa hospital has been made with many considerations as Hamas knew that medical places won’t be attacked by the enemy. Equipment, explosives and other material has been kept there." Hamas is using hospitals in Gaza as covers and have turned them into ammunition depots, according to a video of interrogation of “Hamas terrorists" released by  Israel Security Agency  Shin Bet, accessed exclusively by News18. ALSO READ | Israel-Hamas War LIVE Updates  HERE The Israeli military has claimed that those featuring in the video released on Saturday are Hamas terrorists, who participated in the  October 7 attack  on Israel. “Most of the tunnels are hidden in hospitals. There are multiple underground levels. Al-Shifa Hospital is not small, it is a big place that can be used to hide things," a man is seen saying. “The Al-Shifa
Read more

Islam Has Massacred Over 669+ Million Non-Muslims Since 622AD

By Explorer -
Image
In fact, no ideology has been as genocidal as Islam… Islam has killed more than 5 times the number of people killed by communism. In the total numbers we have updated over 80 million Christians killed by Muslims in 500 years in the Balkan states, Hungary, Ukraine, Russia. Then we have India. The official estimate number of Muslim slaughters of Hindus is 80 million. However, Muslim historian Firistha (b. 1570) wrote (in either Tarikh-i Firishta or  the Gulshan-i Ibrahim) that Muslims slaughtered over 400 million Hindus up to the peak of Islamic rule of India, bringing the Hindu population down from 600 mil to 200 million at the time. With these new additions the Muslim genocide of non-Muslims since the birth of Mohammed would be  over 669 million murders. Islam: The Religion of Genocide Perspective:   Think the Spanish inquisition was bad? More people are killed by Islamists each year than in all 350 years of the Spanish Inquisition* combined. The Spanish inquisition ( Tribunal del Sant
Read more