Thursday, January 21, 17:02
Home security Hacker steals Ethereum worth 19.3 million dollars

Hacker steals Ethereum worth 19.3 million dollars

Security researchers had warned a few months ago about cyber criminals who managed and stole more than 19 millions of dollars by taking control of vulnerable Ethereum nodes. Qihoo 360 did one tweet in March on this criminal, who scanned the 8545 port, looking for vulnerable clients. At the time of publishing the tweet, he had managed to steal nearly 4 Ethereum.

ethereum-hackers-klevoun-19-3-ekatommuria

However, last week the same researchers they discovered a different group of criminals who managed to steal 38.642 Ethereum, totaling approximately 19.3 million dollars. The cryptobodies originate from Ethereum nodes that have enabled the JSON-RPC (8545 port), a protocol that allows remote control of the Node, and gives access to functions such as sending Ethereum to another address.

Making a simple Google search with hacker's address where the currencies of all the broken nodes ended, one can find hundreds of blog posts and forum reports from users who were unfortunate to fall victim.

According to a publication made by official blog of Ethereum before 3 years, leaving JSON-RPC enabled on a device that has internet access without a firewall is vulnerable to such attacks. Anyone who knows the address of the wallet in conjunction with its IP, can take control of the system.

Qihoo 360 Netlab warns that many are constantly scanning for vulnerable systems, and urges users to block remote connections to their systems, allowing only local ones. In addition, the application of a user-authorization in case the remote connection is necessary, is recommended.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

SecNews
SecNewshttps://www.secnews.gr
In a world without fences and walls, who needs Gates and Windows

LIVE NEWS

Biden: How was the political transition in the US captured on social media?

As Joe Biden was sworn in as President of the United States, this important political transition was captured on popular social media. On January 20, ...

CentOS ceases to be supported but RHEL is offered for free

Last month, Red Hat caused a great deal of concern in the Linux world when it announced the discontinuation of CentOS Linux.

Microsoft Office 365 employee passwords leaked online!

A new large-scale phishing campaign targeting global organizations has been found to bypass Microsoft Office 365 Advanced Threat Protection (ATP) and ...

COSMOTE and Microsoft provide new cloud solutions for businesses

COSMOTE and Microsoft expand their cooperation, offering even more advanced and high quality cloud solutions, in large and small ...

Cyber ​​attacks in Eastern Europe are on the rise!

The cyber-attacks that have taken place in many US government agencies and companies in recent months have caused concern in the developing countries of ...

Tesla reduces the prices of the Model 3 in Europe

Tesla has reduced the prices of the Model 3 in many European markets, which reductions could be partly linked ...

iOS, Android, XBox users in the crosshairs of a new malvertising campaign

Recently a new malvertising campaign was discovered that targets users of mobile and other connected devices and uses effective ...

Microsoft: "Zero trust" protects against sophisticated hacking attacks

According to Microsoft, the techniques used by the hackers of SolarWinds, were sophisticated but common and preventable. To avoid future attacks ...

US: Twitter locks Chinese embassy account due to "dehumanization"

Twitter said it locked the account of the Chinese embassy in the United States for a tweet about its women ...

Ransomware victims pay a ransom to prevent their data from being leaked

Keeping backups is very important, especially in cases of Ransomware attacks. However, it seems that the hackers are using new methods, with ...