Hackers were able to hack into the AWS cloud services’ infrastructure of two companies in order to mine Bitcoin. According to the security firm RedLock, the two affected companies were Aviva and Gemalto. Hackers didn’t target any sensitive data of either company. The hackers were only interested to access the Amazon Cloud servers in order to mine cryptocurrencies by executing a bitcoin mining command.
According to the publication, the hackers got the opportunitty to mine due to the fact that the administrative consoles of Kubernetes were not protected by a password. It is also noted that hackers did not take advantage of access to confidential information of companies, but only used Amazon Cloud capacities for crypto currency mining.
Upon deeper analysis, the team discovered that hackers were executing a bitcoin mining command from one of the Kubernetes containers. The instance had effectively been turned into a parasitic bot that was performing nefarious activity over the internet.
The document also says that many companies pay insufficient attention to the potential vulnerabilities of their security systems in cloud services. According to RedLock, 81% of the companies surveyed are taking inadequate security measures, opening up opportunities for hacking cloud services.