A group of hackers hacked into HP servers for mining Raptoreum cryptocurrency. At the same time, the attackers did not need physical access to the machines - the protection of the AMD EPYC processors, which became the main victim of the attack, was disabled remotely.
According to Tom's Hardware, the hackers exploited a vulnerability in the Log4j library. It allows you to establish a remote connection, as well as download and execute arbitrary code on the server. The choice of just such hardware for remote mining was not accidental: the Raptoreum cryptocurrency is "sharpened" for mining on the CPU, and it is extremely unprofitable to use ASIC systems to obtain it.
The vulnerability was discovered on December 17, when all servers affected by the hack were taken offline. As noted by the developers of the Raptoreum cryptocurrency, on December 9, the network saw a jump in the average hash rate from 200 to 400 MH / s. In less than 8 days, the unknown managed to extract 3.4 million tokens worth about $ 110 thousand. About 1.5 million "coins" were sold on the crypto exchange, and the rest settled in the cybercriminals' electronic wallets.
According to experts, AMD EPYC Milan server processors based on Zen 3 architecture have become a target of hackers due to the large amount of L3 cache, which affects the efficiency of Raptoreum mining. This makes the proprietary chips twice as profitable for mining "crypto" compared to the consumer Ryzen 9 5900X and 5950X.
0 Comments:
Post a Comment
Your comment and facebook share will be appreciated