Skip to main content

Google Alerts Users About Malicious Actors Using Cloud for Cryptocurrency Mining

https://motleybloggers.com/wp-content/uploads/2021/11/google-alerts-users-about-malicious-actors-using-cloud-for-cryptocurrency-mining.jpg

google cloud

Google has warned users about the use of its Google Cloud platform by malicious actors to mine cryptocurrencies. In its latest Cloud Threat Intelligence report titled “Threat Horizons,” which provides users with security insights, the company informed that 86% of the compromised instances on Google Cloud platforms were being used to mine cryptocurrencies. Most of the accounts compromised were secured with weak passwords or with no password at all.


Google Cloud Used to Mine Cryptocurrencies


Software giant Google is alerting users about malicious actors using compromised Google Cloud accounts for mining cryptocurrency. Google Cloud accounts have access to processing power that can be easily redirected to perform malicious tasks. According to the first “Threat Horizons” report, issued by Google to raise awareness about the security weaknesses in its platform, 86% of the compromised accounts are used for this purpose.


The report states that cryptocurrency mining in the cloud causes high usage of CPU and/or GPU power. It also makes reference to the mining of alternative cryptocurrencies like Chia, which use storage space as a mining resource.



Causes and Mitigation


The first cause of the compromise of the examined Google Cloud instances was poor security due to different issues. One of these issues was a weak or inexistent password to access the platform, or a lack of API validation in the instance. With no basic security measures applied, a malicious actor can easily take hold of these platforms. Other cloud platforms are also facing similar problems.


Most of the studied instances downloaded the cryptocurrency mining software in less than 22 seconds after being compromised. This shows that there are systematic attacks of these unsecured instances, with the sole intention being to use them for this purpose. Also, the malicious actors seem to be tracking these unsecured Google Instances actively, given that 40% of the unsecured instances were compromised within eight hours of being deployed. Google stated:



This suggests that the public IP address space is routinely scanned for vulnerable Cloud instances. It will not be a matter of if a vulnerable Cloud instance is detected, but rather when.



To mitigate these risks, the report recommends users follow basic best security practices and implement container analysis and web scanning, tools that will probe the system for security weaknesses using different techniques like crawling.


What do you think about the use of Google Instances to mine cryptocurrency by malicious actors? Tell us in the comments section below.




Origina post from
https://motleybloggers.com/google-alerts-users-about-malicious-actors-using-cloud-for-cryptocurrency-mining/

Comments

Post a Comment

Popular posts from this blog

US Senator Urges Congress to Pass Her Crypto Bill — Claims It Would’ve Prevented FTX Bankruptcy

http://motleybloggers.com/wp-content/uploads/2022/11/us-senator-urges-congress-to-pass-her-crypto-bill-claims-it-wouldve-prevented-ftx-bankruptcy.jpg U.S. Senator Cynthia Lummis believes that the FTX bankruptcy wouldn’t have happened under the Lummis-Gillibrand crypto bill. She stressed: “It’s clearer now than ever before that we need comprehensive regulation in the digital asset space.” Senator Lummis Explains How Her Crypto Bill Would Prevent the FTX Catastrophe U.S. Senator Cynthia Lummis (R-WY) explained in a series of tweets Monday why the collapsed cryptocurrency exchange FTX wouldn’t have gone bankrupt had Congress passed her crypto bill. The cryptocurrency trading platform filed for bankruptcy last week. The senator from Wyoming has been a supporter of bitcoin for quite some time. She personally owns BTC and believes that bitcoin is something that the Federal Reserve should hold on its balance sheet. She has said repeatedly that the cryptocurre...
Post a Comment
Read more

Bitcoin, Ethereum Technical Analysis: ETH Back Under $2,000 as Balenciaga Gains Lose Steam

https://motleybloggers.com/wp-content/uploads/2022/05/bitcoin-ethereum-technical-analysis-eth-back-under-2000-as-balenciaga-gains-lose-steam.jpg Following strong gains to start the week, BTC once again fell under $30,000, as crypto prices moved lower on Tuesday. The downturn follows up from yesterday’s rally, which came as Balenciaga announced it would be accepting crypto payments. ETH also dropped, falling under $2,000 today. Bitcoin Bitcoin fell under $30,000 on Tuesday, as bears returned to action following a green start to the week. Following a high of $30,547.50 during Monday’s session, BTC /USD fell to an intraday low of $28,975.56 earlier today. Today’s drop saw BTC fall by over 5% in the day, as bullish sentiment following the Balenciaga crypto announcement faded. BTC /USD – Daily Chart Since then, bears have now pushed prices closer to support at $28,800, which is an area where BTC has resided over the past few weeks. Looking at the chart, the 14-da...
Post a Comment
Read more

P2P Bitcoin Traders in Nigeria Think Outside the Box in the Wake of CBN Restrictions

After the Central Bank of Nigeria issued a directive targeting the country’s cryptocurrency industry, bitcoin and altcoin trade volumes on centralized exchanges immediately plunged. Nevertheless, the new regulations seem to have succeeded in boosting crypto trade volumes on informal markets or on peer-to-peer trading platforms. Nigerian Crypto Traders Get Creative Still, the increasing trades on informal platforms have also led to increased reports of users losing money to con artists. Moreover, with the CBN seemingly eager to see volumes of crypto trades plummet, Nigerian users had to find ingenious but legal ways of getting around the central bank’s imposed restrictions. As shown in one local report , one such legal way is through an app created by one local crypto start-up, Patricia. According to the report, this application is already enabling Nigerian users to buy or sell their crypto assets securely and without running afoul of CBN regulations. Therefore, in this repor...
Post a Comment
Read more