• Contact Us
  • Affiliate Disclosure
  • Privacy Policy
  • Terms of Use
  • DMCA
Thursday, June 8, 2023
WongaNews.com
  • Live Prices
  • Crypto News
  • Bitcoin
  • Altcoins
  • NFT News
  • Blockchain
  • Regulations
  • Trading
No Result
View All Result
  • Live Prices
  • Crypto News
  • Bitcoin
  • Altcoins
  • NFT News
  • Blockchain
  • Regulations
  • Trading
No Result
View All Result
WongaNews.com
No Result
View All Result

General Bytes Bitcoin ATMs compromised by threat actors

August 22, 2022
in Crypto News
Reading Time: 3 mins read
A A
General Bytes Bitcoin ATMs compromised by threat actors
ShareShareShareShareShare

Related articles

Bitcoin Price Struggling Hard at $26,000; Is This the Time to Be Worried?

Bitcoin Price Struggling Hard at $26,000; Is This the Time to Be Worried?

June 8, 2023
Shiba Inu Nears Massive Price Explosion as 338B Tokens stacked

Shiba Inu Nears Massive Price Explosion as 338B Tokens stacked

June 7, 2023

Source: gualtiero boffi – shutterstock

  • Bitcoin ATM manufacturer General Bytes has asked all ATM operators to update their software after its server was compromised through a zero-day attack.
  • This attack comes almost a year after Kraken Security Labs disclosed the vulnerability of most Bitcoin ATMs as their default admin QR code has never been changed.

Bitcoin ATM manufacturer General Bytes has asked all ATM operators to update their software after its server was compromised through a zero-day attack. According to the company’s security advisory team, the threat actors hacked into its Crypto Application Server (CAS) and stole funds. 

The hackers scanned for exposed servers running on TCP ports 7777 or 443, including servers hosted on General Bytes’ cloud service.

It is important to note that the CAS controls its entire operation including the buying and selling of cryptos. After gaining control, the hackers modified the settings to add themselves as default administrators on the CAS, named gb. From there, the hackers compromised the buy and sell settings, to ensure that all assets sent to the ATMs are redirected to the wallet addresses controlled by them. They also reportedly made away with some funds.

The attacker was able to create an admin user remotely via CAS administrative interface via a URL call on the page that is used for the default installation on the server and creating the first administration user.

Regardless of the information given, the company has not disclosed the amount stolen and the ATMs affected. 

Kraken Security Labs pointed out vulnerabilities in General Bytes

It is important to note that General Bytes own and operate over 8827 Bitcoin ATMs across 120 countries. Customers can as well access over 40 crypto assets on its various ATMs. As part of its effort to mitigate the impact, the company has advised customers to not use its ATM servers till they are updated to “patch releases 20220725.22, and 20220531.38 for customers running on 20220531.”

Customers are also reminded to review their “Sell Crypto Settings” before reactivating the terminals. This is to cross-check whether hackers modified their settings to redirect all received funds into their wallet addresses. To ensure that the CAS admin interface is only accessed from authorized IP addresses, customers have also been asked to modify their server firewall settings. In response to criticisms that the company did not invest enough in security audits to prevent this attack, it has stated that several audits have been conducted since 2020. 

This attack comes almost a year after Kraken Security Labs disclosed the vulnerability of most Bitcoin ATMs as their default admin QR code has never been changed. In the report, the security firm observed that General Bytes’ BATMTwo ATM range had several hardware and software vulnerabilities. According to Kraken, it is easier for hackers to compromise any ATM if they get access to the administrative code. In response, General Bytes reportedly informed ATM operators of the vulnerabilities.

Kraken Security Labs reported the vulnerabilities to General Bytes on April 20, 2021, they released patches to their backend system (CAS) and alerted their customers, but full fixes for some of the issues may still require hardware revisions.


Credit: Source link

ShareTweetSendPinShare
Previous Post

The Music NFT Show: Podcast Episode 16

Next Post

Tether, Circle, other stablecoin issuers’ govt. debt stands at $80 billion

Related Posts

Bitcoin Price Struggling Hard at $26,000; Is This the Time to Be Worried?

Bitcoin Price Struggling Hard at $26,000; Is This the Time to Be Worried?

June 8, 2023

The crypto markets are rising slightly after being captivated by bears in recent times. The bitcoin price, which has slipped...

Shiba Inu Nears Massive Price Explosion as 338B Tokens stacked

Shiba Inu Nears Massive Price Explosion as 338B Tokens stacked

June 7, 2023

Shiba Inu Holding a $GOLDEN Token Shiba Inu remains the delight of big investors with accumulations topping 338 billion SHIB...

Tether (USDT) Ousts SWIFT for USD

Tether (USDT) Ousts SWIFT for USD

June 7, 2023

Xapo Bank has integrated Tether payment rails instead of SWIFT for funds transfer. The move is set to stir a...

NFT Revolution:How HedgeUp Is Transforming NFT Landscape

NFT Revolution:How HedgeUp Is Transforming NFT Landscape

June 7, 2023

Non-fungible tokens (NFTs) have been a significant part of the crypto space for years. The first mainstream NFT project was...

Robinhood Mulls Delisting Tokens SEC Deems Securities

Robinhood Mulls Delisting Tokens SEC Deems Securities

June 7, 2023

Trading platform Robinhood is reportedly reviewing its cryptocurrency offerings following the SEC crackdown on Binance and Coinbase. Robinhood Markets Inc....

Load More
Next Post
Tether, Circle, other stablecoin issuers’ govt. debt stands at $80 billion

Tether, Circle, other stablecoin issuers' govt. debt stands at $80 billion

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Hong Kong’s Web3 Industry Unites For Crypto Hub Status Post China Web3 Whitepaper

Hong Kong’s Web3 Industry Unites For Crypto Hub Status Post China Web3 Whitepaper

May 30, 2023
How AI is Leading the Way in NFT Copyright Infringement Prevention

How AI is Leading the Way in NFT Copyright Infringement Prevention

May 9, 2023
Crypto Crackdown In Bali: Gov't Targets Foreign Tourists' Use Of Digital Currency – Bitcoinist

Crypto Crackdown In Bali: Gov't Targets Foreign Tourists' Use Of Digital Currency – Bitcoinist

May 29, 2023

About Us

Wonga News is an online news portal that aims to provide the latest crypto news, blockchain, regulations, and much more stuff like that around the world. We promise to share only high quality content from the world's best crypto sources. Feel free to get in touch with us!

What’s New Here!

  • Bitcoin Price Struggling Hard at $26,000; Is This the Time to Be Worried?
  • Pepecoin Briefly Hits $1 Billion Market Cap Again Before Backpedaling
  • The Great Wave off Kanagawa Licensed NFTs To Release In 3D and Augmented Reality on ElmonX

Newsletter

Loading
  • Contact Us
  • Affiliate Disclosure
  • Privacy Policy
  • Terms of Use
  • DMCA

© 2022 WongaNews.com - All Rights Reserved!

No Result
View All Result
  • Live Prices
  • Crypto News
  • Bitcoin
  • Altcoins
  • NFT News
  • Blockchain
  • Regulations
  • Trading

© 2022 - WongaNews.com - All Rights Reserved!

  • bitcoinBitcoin(BTC)$26,410.00-1.48%
  • ethereumEthereum(ETH)$1,840.45-1.83%
  • USDEXUSDEX(USDEX)$1.07-0.47%
  • tetherTether(USDT)$1.00-0.05%
  • binancecoinBNB(BNB)$261.46-5.61%
  • usd-coinUSD Coin(USDC)$1.00-0.06%
  • rippleXRP(XRP)$0.52-1.23%
  • staked-etherLido Staked Ether(STETH)$1,839.66-1.79%
  • cardanoCardano(ADA)$0.325725-4.72%
  • dogecoinDogecoin(DOGE)$0.067898-2.32%
  • solanaSolana(SOL)$18.63-7.03%
  • matic-networkPolygon(MATIC)$0.77-4.10%
  • tronTRON(TRX)$0.0772390.08%
  • litecoinLitecoin(LTC)$87.70-2.74%
  • polkadotPolkadot(DOT)$5.00-3.66%
  • binance-usdBinance USD(BUSD)$1.00-0.05%
  • avalanche-2Avalanche(AVAX)$13.89-4.58%
  • shiba-inuShiba Inu(SHIB)$0.000008-1.05%
  • daiDai(DAI)$1.00-0.05%
  • wrapped-bitcoinWrapped Bitcoin(WBTC)$26,460.00-1.35%
  • uniswapUniswap(UNI)$4.59-3.45%
  • leo-tokenLEO Token(LEO)$3.51-0.44%
  • chainlinkChainlink(LINK)$5.98-3.32%
  • cosmosCosmos Hub(ATOM)$9.49-5.39%
  • okbOKB(OKB)$44.39-1.70%
  • moneroMonero(XMR)$144.63-1.27%
  • Aerarium FiAerarium Fi(AERA)$7.12-13.06%
  • ToncoinToncoin(TON)$1.65-0.68%
  • ethereum-classicEthereum Classic(ETC)$16.95-2.15%
  • stellarStellar(XLM)$0.086978-2.47%
  • bitcoin-cashBitcoin Cash(BCH)$111.28-2.06%
  • true-usdTrueUSD(TUSD)$1.00-0.10%
  • lido-daoLido DAO(LDO)$2.18-8.91%
  • internet-computerInternet Computer(ICP)$4.19-3.67%
  • filecoinFilecoin(FIL)$4.12-4.29%
  • quant-networkQuant(QNT)$112.34-3.47%
  • AptosAptos(APT)$7.71-5.01%
  • crypto-com-chainCronos(CRO)$0.059127-0.84%
  • hedera-hashgraphHedera(HBAR)$0.048107-2.54%
  • GGTKNGGTKN(GGTKN)$0.1121310.76%
  • ArbitrumArbitrum(ARB)$1.13-3.86%
  • vechainVeChain(VET)$0.017791-4.14%
  • nearNEAR Protocol(NEAR)$1.41-5.54%
  • apecoinApeCoin(APE)$2.89-2.48%
  • the-graphThe Graph(GRT)$0.113617-2.73%
  • paxos-standardPax Dollar(USDP)$1.000.03%
  • fraxFrax(FRAX)$1.000.14%
  • EdgecoinEdgecoin(EDGT)$1.00-0.03%
  • eosEOS(EOS)$0.89-0.26%
  • rocket-poolRocket Pool(RPL)$47.76-2.20%