A hacker group who stole a virtual currency etheral with a total value of more than 2.2 billion yen is reported
byJohn Jones
EthicalamIs one of the virtual currencies distributed on the Internet as well as Bitcoin (bit coin), and has established a position as immovable as a block chain platform. It is reported that a hacker group aiming at such an event has succeeded in stealing over a total of 20 million dollars (about 2.2 billion yen) of Ethariamu.
Hackers Stole Over $ 20 Million in Ethereum from Insecurely Configured Clients
https://thehackernews.com/2018/06/ethereum-geth-hacking.html
It's officiallyGethWe provide client software called Geth to allow users to mining Enterprise, move funds, display transaction histories of Enterprise, etc.
A security researcher believes that a group of hackers has security unstable published on the InternetnodeI found out the fact that I scanned it by accessing Geth 's port. Security Research Institute360 NetlabIn March of 2018, I reported the hacker that stealed Eliaryam is the tweet below. At this time, 3.96234 Ethernet is being stolen, and converting it at the rate at the time of article creation (1 Ethernet = about 59,000 yen) means that about 235,000 yen of the company has been stolen.
Someone tries to make quick money by scanning port 8545, looking for geth clients and stealing their cryptocurrency, good thing geth by default only listens on local 8545 port. So far it has only got 3.96234 Ether on its account, but hey it is free money !pic.twitter.com/YVSWlMtYGa
- 360 Netlab (@ 360 Netlab)March 15, 2018
Geth executes the node of the etherium and performs a request and response in the JSON format "JSON-RPCA client to enable the interface. Users can remotely access the Ethernet block chains by using the JSON - RPC interface.
The hacker aimed at was the user's earmaireu wallet that this JSON-RPC is open to the outside, and as of June 11, 2018, it is said that 32,642 yeareums were stolen by the hacker group in the past few months Security researchers have reported. Converting at the rate at the time of writing the articles, 36,642 yachts will amount to more than 2.2 billion yen.
Remember this old twitter we posted? Guess how much these guys have in their wallets? Check out this wallet addresshttps://t.co/t4qB17r97J$ 20,526,348.76, yes, you read it right, more then 20 Million US dollarshttps://t.co/SXHrdTcb6e
- 360 Netlab (@ 360 Netlab)June 11, 2018
According to the Ethernet standard, by leaving the JSON - RPC interface on the terminal, you can access the user 's Ethernet wallet by combining the user' s IP and the Ethernet wallet 's address. If the terminal is in a state where it can access the Internet without a firewall policy, even if it is not the user himself, even if the user IP and the address of the wallet are known, it is possible to access the wallet from the outside. The hacker group searched for users with weak security wallets, seems to steal the Ethernet from the outside by connecting to the wallet.
The hacker victim worldwide hacked victims are complaining about the damage on the Internet when searching with this address, the Ethernet address which collected harvested etheries is "0x957cD4Ff9b3894FC78b5134A8DC72b032fFbC464".
360 Netlab pointed out that not only hacker groups with an Ethernet address "0x957cD4Ff9b3894FC78b5134A8DC72b032fFbC464", but also other hackers are trying to steal Ethernet from an insecure security wallet. Hacker News, who reported the incident, calls attention that "Users installing Geth on their terminals should authenticate users when accessing Geth from a local computer or doing remote operations."
Related Posts: