Elon Musk, the Founder of SpaceX, Tesla and many other companies recently launched the world’s most powerful rocket Falcon Heavy. The launch was a huge success for Elon and SpaceX but no one was aware what next is waiting to come in the queue. He shot his Tesla Roadster into space, he successfully built the world’s most powerful rocket and someday he might even establish a colony on Mars. But this time he got knocked down by the hackers. The real Iron Man apparently could not escape the reach of crypto mining hackers.
The electric car manufacturer ‘Tesla’ headed by Elon Musk is now the latest organization to become the victim of crypto jacking. RedLock, the cybersecurity firm released this news today. The CSI team found out that the hackers have penetrated into Tesla’s Kubernetes console. The console is basically a system for containerized apps which was originally developed by Google. The Kubernetes Console was however not password protected. Within one shell, the credentials were revealed to Tesla’s AWS (Amazon Web Services) environment which consisted an Amazon S3 (Simple Storage Service) vessel that contains sensitive data such as telemetry. Apart from the data exposure, the hackers were trying to mine for cryptocurrency from within one of Tesla’s Kubernetes pods.
The CSI team captured some advanced avoidance measures that the hackers employed in the attack. When compared with other crypto mining incidents, the hackers, in this case, did not use a renowned public mining pool. They explained that the hackers installed mining pool software and configured the destructive script to get the connection to an unlisted or semi-public endpoint. Due to the same reason, it becomes difficult for the CSI team to detect the IP address and domain of the hackers.
The researchers said that hackers of Tesla hid the original IP address of the server of mining pool behind the Cloudflare which is a free content delivery network (CDN) service. The CDN service provides a network to the hackers to use a new IP address on demand. Thus, the detection of the IP address based crypto mining activity more difficult. Moreover, Musk, fortunately, don’t need to worry about his computing resources being exposed to the crypto mining anymore. The hack was immediately reported to Tesla by the CSI team and the issue was resolved and rectified quickly.