NAS device botnet mined $600, 000 ter Dogecoin overheen two months, ZDNet

Insecure NAS boxes have landed a hacker a petite fortune ter cryptocurrency.

By Liam Tung | June Eighteen, 2014 — 09:15 GMT (02:15 PDT) | Topic: Storage

A vulnerability ter a network linked storage (NAS) system permitted hackers to establish what’s thought to be the most profitable illegal cryptocurrency mining operation to date.

Why sweat your own hardware to mine cryptocurrencies when you can hijack someone else’s hardware to get the job done? That’s what one crafty hacker did earlier this year to generate 500 million Dogecoin — one of many Bitcoin alternatives.

One of the reasons it’s become a popular currency for botnet mining operations is the relative ease with which the currency can be mined, compared to Bitcoin, which requires purpose-built ASICs for mining.

Tech Professional Research

It’s not the very first time that nefarious mining operations have bot set up: scammers behind Android malware that Google yanked from the Play store earlier this year used hijacked smartphones to mine “thousands” of Dogecoin. But the Android effort wasgoed nothing compared to NAS mining network, according to a security researcher at Dell’s SecureWorks, who said this illegitimately acquired mining operation is the “single most profitable” to date, earning its technicus an estimated $600,000 overheen two months earlier this year.

The key to the entire operation were four security vulnerabilities te the Linux-based OS running on a NAS opbergruimte by Taiwanese manufacturer Synology. Spil SecureWorks’ researcher Patstelling Litke notes, the flaws were made public te September 2013, but while Synology issued patches for them shortly after their disclosure, the bulk of the currency wasgoed mined inbetween January and February this year.

Synology te February released a further patch addressing issues stemming from the vulnerabilities, shortly after one user complained on Facebook about finding “PWNED processes using up all CPU” on his device.

After digging into the malware samples found te the “PWNED” folder, Litke found a miner called CPUMiner that had bot compiled for Synology devices. CPUminer is a legitimate miner but it’s bot co-opted numerous times by hackers ter illegitimate distributed mining operations .

While the hacker’s identity isn’t known, the researcher wasgoed able to calculate the operation’s earnings after acquiring the Dogecoin wallet and finding that they’ve run other mining operations previously.

“By exploring the Dogecoin block chain for this address (spil well spil one other), wij were able to tally a total mined value of overheen 500 million Doge, or harshly $620,496 USD (the bulk of which wasgoed earned te January and February of this year),” wrote Litke.

Leave a Reply