Tesla has recently responded to a security say that suggested the company’s systems were chosen by hackers to mine cryptocurrency because of poor precautionary features. The automaker has confirmed what has cloud computing platform was indeed hijacked by hackers but assures that no customer data was exposed within the breach.
“Our initial investigation found no indication that customer privacy or vehicle safety or security was compromised in the slightest,” a firm spokesperson said, adding the hack was available to the internally used engineering test cars.
RelatedNSA Exploits Have been Helpful to Power Sophisticated Cryptojacking Campaigns
RedLock, the safety firm which had alerted the firm in regards to the breach, reported yesterday that Tesla had its?login credentials stored at a system that was not protected using a password. This lapse in security generated hackers gaining access to the company’s?Amazon Web Services (AWS) environment exposing non-public company data.?Inside their report, RedLock had said that Tesla telemetry, mapping, and vehicle servicing data was potentially already familiar with hackers.
The company now has confirmed that no customer data was exposed good initial investigation. Here’s the overall statement:
We have a very bug bounty program to encourage this research, and we addressed this vulnerability within hours of discovering it. The impact is very much tied to internally-used engineering test cars only, and our initial investigation found no indication that customer privacy or vehicle safety or security was compromised in the slightest.
Cryptojacking becomes a growing headache for organizations
The research had also suggested that hackers were secretly mining cryptocurrency utilizing this access to the EV maker’s systems. By reducing CPU usage and a few other tricks, hackers made it possible to hide their tracks with this operation.
After the security firm informed the automaker in this exposure and cryptojacking scheme, Tesla claimed it fixed the?vulnerability “within hours.”
RelatedHackers Hijack Tesla – Mine Cryptocurrency and Access Private Company Data
Tesla isn’t the primary or perhaps the last major company to experience turn into victim of cryptojacking. Earlier this year, a report revealed how many government-owned websites around the world were hijacked for?stealth mining of cryptocurrency. The specific situation is now so worse that huge amounts of users turn into victim of cryptojacking through popular websites and services.?Research in December had says only 4 popular websites were managing to target resources of nearly 1 billion visitors for Monero mining.
As Tesla’s case proves again, it’s not only potential customers that happen to be being targeted by malicious websites or advertisers, as over 55% of organizations put together impacted by cryptojacking attacks with crypto-mining malware becoming one of several top 10 threats online.