Hackers were using Amazon Cloud to mine Bitcoin

According to the RedLock report, hackers were able to breach into the Amazon Cloud services of two companies for Bitcoin mining
09 October

Hackers were able to hack into the AWS cloud services’ infrastructure of two companies in order to mine Bitcoin. According to the security firm RedLock, the two affected companies were Aviva and Gemalto. Hackers didn’t target any sensitive data of either company. The hackers were only interested to access the Amazon Cloud servers in order to mine cryptocurrencies by executing a bitcoin mining command.

According to the publication, the hackers got the opportunitty to mine due to the fact that the administrative consoles of Kubernetes were not protected by a password. It is also noted that hackers did not take advantage of access to confidential information of companies, but only used Amazon Cloud capacities for crypto currency mining.

Upon deeper analysis, the team discovered that hackers were executing a bitcoin mining command from one of the Kubernetes containers. The instance had effectively been turned into a parasitic bot that was performing nefarious activity over the internet.
 

RedLock report

The document also says that many companies pay insufficient attention to the potential vulnerabilities of their security systems in cloud services. According to RedLock, 81% of the companies surveyed are taking inadequate security measures, opening up opportunities for hacking cloud services. 

Samourai Wallet: SegWit2x is an attack on the network

Another Bitcoin-related company expressed its position regrading upcoming SegWit2x
18 October

Samourai Wallet team said that the SegWit2x is a controversial and unnecessary change in the current rules of the network and it is the attempt of a small group of players to take control over the development of the open code of bitcoin. This is stated in the official blog of the company.

As noted in the statement, Samourai Wallet supports the development of open source code by the Bitcoin Core team, which, according to company representatives, timely introduces all the necessary updates. In this regard, the service will support the longest chain of blocks, compatible with Bitcoin Core 0.15 nodes.

The S2X hard fork is particularly troubling as the development team have NOT added an important safeguard known as ‘replay protection’ to their software. Without replay protection any transaction sent on either of the chains may also be sent on the other chain (‘replayed’), leading to the high potential of users losing funds. Because of the willful insistence by the developer(s) to not add replay protection, we are classifying this hard fork as an attack on the network.
 

Samourai Wallet team

In this regard, the service will offer additional measures to protect against repetitive playback in the case of hard-core.

It is also stressed that Samourai Wallet will not provide users with access to the equivalent number of S2X tokens, and will offer to convert them to BTC at the market price.