Hacker hacked the servers of General Bytes bitcoin ATMs
The attack compromised user passwords and API keys
20.03.2023 - 08:00
297
2 min
0
What’s new? General Bytes, a bitcoin ATM manufacturer, reported the highest-risk incident, which occurred on March 17 and 18. By remotely uploading his own java application through the master service interface, the attacker managed to gain access to terminals and hack into GENERAL BYTES Cloud service as well as offline servers of other operators.
General Bytes’ official announcement
How did the attack happen? The attacker identified a vulnerability in the interface of the service used by crypto ATMs to upload videos to the server. The attacker scanned the Digital Ocean cloud hosting IP addresses and found running CAS services on ports 7741. Using this vulnerability, the hacker uploaded his own application directly to the server used by the admin interface. The application server was configured by default to run applications in the deployment folder. As a result of the hack, the hacker gained the following capabilities:
- Database access;
- Reading and decrypting API keys used to access funds in hot wallets and exchanges;
- Sending funds from hot wallets;
- Downloading usernames and password hashes;
- Disabling two-factor authentication;
- Accessing terminal event logs, including when customers scanned a private key with a crypto ATM.
To protect against the threats, General Bytes announced it was shutting down the cloud service and warned operators to install their own standalone server. In addition, due to the compromise of all users’ passwords, as well as API keys to exchanges and hot wallets, operators need to revoke them and generate new keys and passwords.
Last August, General Bytes also reportedthe compromise of its servers. Then hackers managed to change the system settings so that cryptocurrency came directly to their wallets. And in October, the FBI notedan increase in the use of cryptocurrencies by scammers. Individual losses of investors ranged from tens of thousands to millions of dollars.
Useful material?
Telegram 
Twitter Technologies
Network fees will be integrated into the cost of swaps
Nov 22, 2024
Market
The company’s unrealized profits from investing in its first cryptocurrency approached $14 billion
Nov 19, 2024
Incidents
The search, the reason for which was not announced, took place a week after the election, the results of which Polymarket users predicted quite accurately
Nov 14, 2024
Market
Analysts point to the growing popularity of the first cryptocurrency as a safe haven asset
Nov 13, 2024
Market
The product will begin trading on the Swiss Exchange on November 19
Nov 12, 2024
Market
The company’s unrealized profits from investing in the first cryptocurrency approached $13 billion
Nov 12, 2024
Cryptocurrency rates
-
Bitcoin
$96 388
BTC
-1.55%
-
Ethereum
$3 333.42
ETH
-2.74%
-
BNB Smart Chain
$579.4
BSC
+1.23%
-
Ripple
$1.38
XRP
-7.29%
-
Dogecoin
$0.41908
DOGE
-2.72%
-
Cardano
$0.988596
ADA
-6.48%
-
Stellar XLM
$0.507109
XLM
+0.49%
-
Polkadot
$8.49
DOT
-1.63%
-
Bitcoin Cash
$503.69
BCH
-1.09%
-
Litecoin
$96.09
LTC
-2.46%