certify
Home arrow Article arrow Article Detail

Google warns 'Malicious Actors' performing crypto mining using compromised cloud accounts

Profile Image

Indrani bose Follow

INDIA

Dec, 02 2021

Dec, 02 2021

likes 0 | comments 0

Article Image

On Wednesday software giant Google issued latest cloud threat Intelligence report titled “Threat Horizons” report raising awareness among users and intelligence regarding security weaknesses in its platform.

As per Google around 86% of 50 recently compromised accounts are being used for malicious activity purpose. It also refers about malicious actors using compromised Google Cloud accounts for mining cryptocurrencies Chia, which use storage space as a mining resource. In the most of studied cases within 22 seconds of the account being compromised, cryptocurrency mining software was being downloaded. Within eight hours of being deployed 40% of the unsecured instances were being compromised. As per Google this reflects that malicious actor were tracking these unsecured Google instances actively and were systematically attacking these unsecured instances with only aiming to use it for this purpose. Google Cloud accounts is a remote storage platform for users to keep data and files off-site and hence have access to processing power that can be easily redirected to perform malicious tasks. To identify vulnerable systems around 10% of the compromised accounts were also used to conduct scans of other publicly available resources on the internet while 8% of instances were used to attack other targets.

Google states “This suggests that the public IP address space is routinely scanned for vulnerable Cloud instances. It will not be a matter of if a vulnerable Cloud instance is detected, but rather when”. Seth Rosenblatt, security editor at Google Cloud, in a blog post and Bob Mechler, director of the office of the chief information security officer at Google Cloud said, "The cloud threat landscape in 2021 was more complex than just rogue cryptocurrency miners, of course,"

Usually using Google cloud for a fee, users are allowed to do crypto mining which is a for-profit activity that often requires large amounts of computing power. Cloud mining cryptocurrency requires high usage of CPU and/or GPU power.

 



likes 0 Likes | comments 0 Comments

Profile Image

Indrani bose

CBW - External Analyst

INDIA

Comments
Disclaimer: The information is for informational purposes only.​ This advertisement does not constitute financial advice or any other advice. You should consult with a financial professional to determine what may be best for your individual needs. None of the information and/or content available through this advertisement is intended as an offer or solicitation of an offer to buy or sell, or as a recommendation, endorsement, or sponsorship of any company, financial product, security or commodity. To the maximum extent permitted by law, we disclaim any and all liability in the event any information, commentary, analysis, opinions, advice and/or recommendations prove to be inaccurate, incomplete or unreliable or result in any investment or other losses. In Making the investment decision, investors must rely on their own examination of the issuer and the terms of the offerings, including the merits and risks involved. Investments are speculative, illiquid, and involve a high degree of risk , including the possible loss of investment.