Blockchain.info wallet users fall prey to scam

Scam emails targets Blockchain.info wallet users who become its victims
26 October 2017   628

Blockchain.info wallet users fall prey to scam: a fake email alert is sent out to prospective targets from no-reply@blockchain.info, falsely claiming that unauthorized login attempts have made on their blockchain.info wallets. The fake message prompts users to either authorize the login or recover their wallet, and threatens to freeze the wallet and funds therein until one of these actions is taken.

The users are recommended to avoid clicking any of the links in the email, as they load a website at the URL http://blockchain.info.ht/#/ that asks users to enter wallet addresses and passphrases or private keys. Once a user surrenders this information, it is reasonable to assume that the contents of their now accessible wallet will be emptied by the scammer. Users should notice the lack of a secured http:// connection, which is indicated by the “https://” preceding the URL. According to ethnews.com, tracking the IP of the scam site (185.119.173.158) reveals that it is operating out of London.

It is advisable for users of the website to ensure that the URL they use is accurate when plugging in addresses, private keys, or passphrases to unlock wallets and check on funds.

Tesla's cloud account hacked to mine cryptocurrency

Independent security group discovered Tesla's cloud account being hacked and infected with a miner-virus
21 February 2018   23

Cryptocurrencies are on the rise and all sorts of shady characters are trying to get in with dubious methods. Recent string of hacking attacks is a perfect example. And now not only exchanges and users with their hard-earned coins are in danger, but also companies with large cloud infrastructure face the same threat.

RedLock, a security research firm, reports that electric car manufacturer Tesla's cloud account information has been leaked to the internet, which allowed hackers to access the company's cloud. It has been hacked and hardware infected with a miner virus called Stratum. The mining protocol masks itself with low CPU usage and obscuring the IP of the mining server.

Of course, RedLock immediately contacted Tesla with this information and the company quickly got to fixing the breach. Tesla's spokesperson assured us that customer personal information hasn't been compromised, and that the vulnerability was patched in a matter of hours. Only small test park of internally-used engineering sample cars has been impacted and no indication whatsoever discovered that actual customer cars have been compromised in any way.

It certanly looks possible, because according to the same RedLock Cloud Security Intelligence group mining profitability of Tesla's cloud is worth a lot more that all the customer data available could be sold for on the black market. This also isn't the first instance of such a hack with no data being stolen. In fact, hacks with intention of hijacking mining capacity has already targeted Gemalto, a world's largest SIM-card manufacturer, and Aviva, a British insurance company, just to name a few.