Skip to main content

Google Alerts Users About Malicious Actors Using Cloud for Cryptocurrency Mining

https://motleybloggers.com/wp-content/uploads/2021/11/google-alerts-users-about-malicious-actors-using-cloud-for-cryptocurrency-mining.jpg

google cloud

Google has warned users about the use of its Google Cloud platform by malicious actors to mine cryptocurrencies. In its latest Cloud Threat Intelligence report titled “Threat Horizons,” which provides users with security insights, the company informed that 86% of the compromised instances on Google Cloud platforms were being used to mine cryptocurrencies. Most of the accounts compromised were secured with weak passwords or with no password at all.


Google Cloud Used to Mine Cryptocurrencies


Software giant Google is alerting users about malicious actors using compromised Google Cloud accounts for mining cryptocurrency. Google Cloud accounts have access to processing power that can be easily redirected to perform malicious tasks. According to the first “Threat Horizons” report, issued by Google to raise awareness about the security weaknesses in its platform, 86% of the compromised accounts are used for this purpose.


The report states that cryptocurrency mining in the cloud causes high usage of CPU and/or GPU power. It also makes reference to the mining of alternative cryptocurrencies like Chia, which use storage space as a mining resource.



Causes and Mitigation


The first cause of the compromise of the examined Google Cloud instances was poor security due to different issues. One of these issues was a weak or inexistent password to access the platform, or a lack of API validation in the instance. With no basic security measures applied, a malicious actor can easily take hold of these platforms. Other cloud platforms are also facing similar problems.


Most of the studied instances downloaded the cryptocurrency mining software in less than 22 seconds after being compromised. This shows that there are systematic attacks of these unsecured instances, with the sole intention being to use them for this purpose. Also, the malicious actors seem to be tracking these unsecured Google Instances actively, given that 40% of the unsecured instances were compromised within eight hours of being deployed. Google stated:



This suggests that the public IP address space is routinely scanned for vulnerable Cloud instances. It will not be a matter of if a vulnerable Cloud instance is detected, but rather when.



To mitigate these risks, the report recommends users follow basic best security practices and implement container analysis and web scanning, tools that will probe the system for security weaknesses using different techniques like crawling.


What do you think about the use of Google Instances to mine cryptocurrency by malicious actors? Tell us in the comments section below.




Origina post from
https://motleybloggers.com/google-alerts-users-about-malicious-actors-using-cloud-for-cryptocurrency-mining/

Comments

Post a Comment

Popular posts from this blog

Research Shows Centralized Exchanges Saw the Most Visits This Year From Americans, Koreans, Russians

http://motleybloggers.com/wp-content/uploads/2022/12/research-shows-centralized-exchanges-saw-the-most-visits-this-year-from-americans-koreans-russians.jpg Residents of the United States, South Korea and the Russian Federation have been the most frequent users of centralized exchanges this year, according to a new study. The finding comes after the spectacular crash of FTX, one of the largest such platforms, amid tightening regulations and fewer new users. U.S. Leads by Number of CEX Users, Turkey and Japan Are Also in the Top in Terms of Traffic The U.S., South Korea and Russia together account for 22% of all visits to centralized exchanges (CEX) for cryptocurrencies, according to the 2022-2023 “Global Crypto Industry Overview and Trends” annual report produced by Huobi Research. The estimate is based on data from the top 100 CEXs on active users, trading depth, trading volume, and reliability. With a share exceeding 9%, the United States is the pronounced leader in terms...
Post a Comment
Read more

Kevin O’Leary Tells US Lawmakers FTX Failed Because Binance Intentionally Killed It

http://motleybloggers.com/wp-content/uploads/2022/12/kevin-oleary-tells-us-lawmakers-ftx-failed-because-binance-intentionally-killed-it.jpg Shark Tank star Kevin O’Leary, aka Mr. Wonderful, has told U.S. Congress that he believes the collapsed crypto exchange FTX failed because rival Binance intentionally put it out of business. He said former FTX CEO Sam Bankman-Fried (SBF) told him that Binance, which owned a 20% equity stake in FTX, refused to comply with regulators’ requests whenever FTX applied for a license in different jurisdictions. Kevin O’Leary Shares Why He Thinks FTX Failed With U.S. Senators Shark Tank star Kevin O’Leary shared why he thinks crypto exchange FTX collapsed in a congressional hearing, titled “Crypto Crash: Why the FTX Bubble Burst and the Harm to Consumers,” before the Senate Committee on Banking, Housing, and Urban Affairs on Wednesday. Senator Pat Toomey (R-PA) asked O’Leary, “Why do you believe FTX failed?...
Post a Comment
Read more

Cardano MACRO REVERSAL Draws Near | XRP Prediction (Watch CLOSELY!)

http://img.youtube.com/vi/TWi-b9uRBdo/0.jpg https://www.youtube.com/watch?v=TWi-b9uRBdo Rumors swirl surrounding thr Ripple SEC case and xrp predictions also come into play. Cardano has been in a massive downtrend on the ADA charts, and momentum as it applies to physics might be the best picture we have into what is in store for ADA price. JOIN Crypto Capital Venture EXCLUSIVE Content ⚡⚡https://cryptocapitalventure.substack.com⚡⚡ 🟩 Bitcoin 4 Year Cycle Prediction - This May Change Your Mind On BTC https://youtu.be/IsKI359lAbQ Get Great Deal On TradingView subscription (the charts I use) USE MY LINK! - https://www.tradingview.com/?aff_id=114269 Follow me on my new Instagram ➡️ https://instagram.com/theofficialccv ⚡ Catch Me On Twitter ⚡ http://twitter.com/cryptorecruitr ⬇How To Stake Your Cardano In Minutes With Crypto Capital Venture!⬇ Stake Your ADA With Ticker: CCV1 ➡ https://youtu.be/cikJiJgRZFQ Crypto Cap...
Post a Comment
Read more