Tesla's Cloud Hacked by Mining Malware
Reports from RedLock's (RedLock is a cloud security company) Cloud Security Intelligence team states that Tesla's Kubernetes console (Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications), was hacked, as there was no use of password protection. Aside from sensitive telemetry data being exposed, hackers were able to steal computer processing power from one of Tesla's Kubertnetes pods to perform crypto mining. This attack was done carefully, hiding their mining pool server and IP address, by use of CloudFlare. Additionally, the hackers kept CUP usage low, in order to further evade any detection. Gaurav Kumar, RedLock CTO, stated:
A Tesla spokesperson assures that no customer information was accessed in the hack, quoting:
According Kumar, due to the rise in value of cryptocurrencies, it's more lucrative for criminals to steal the computing power of such a large organization, rather than their data. Kumar also declared
Redlock believes that due to ineffective network monitoring, 8% of organizations will face cryptojacking attacks, and most will go undetected.