Tanzania's Largest Online Directory
Over 40,400 Listings
Subscribe to 123 Tanzania and be the first to know what's happening

Technology News

Thu Feb 22, 2018

Tesla investigates claims of crypto-currency hack

RedLock, the company that alerted it to the breach, believes the attackers may have done this to mine crypto-currency - an attack known as crypto-jacking.

Tesla said it had addressed the vulnerability 'within hours' and that no customer data had been stolen.

A spokeswoman added that the effects of the hack seemed to be limited to internally used engineering test cars.

'Our initial investigation found no indication that customer privacy or vehicle safety or security was compromised in any way,' she said.

RedLock said that Tesla's log-in credentials were stored on a system that was not password-protected.


What is crypto-jacking?

Crypto-currency mining is the process for creating new digital coins by solving complex mathematical problems. It uses large amounts of computer processing power and therefore racks up large electricity bills.

Hackers can save money by installing software on other people's computers to mine coins without their knowledge or consent. This is known as crypto-jacking.

Crypto-jacking is becoming more widespread, especially as the value of digital currencies such as Bitcoin continues to rise. Hackers have compromised services offered by Starbucks, YouTube and the UK's Information Commissioner's Office.

According to RedLock, the hackers discovered log-in details to Tesla's Amazon Web Services environment on a Kubernetes console - a system originally designed by Google to manage applications. The console was reportedly not password-protected.

The value of the crypto-currency that the hackers mined using stolen power is unknown.

According to a report in Fortune, Tesla paid RedLock $3,133.70 (£2,243.73) for uncovering the security flaw.

The researchers said that the hackers used 'sophisticated evasion measures' to avoid detection, such as keeping their use of computing power low and masking their Internet Protocol (IP) address with CloudFlare's content delivery network service.

In a report published last year, RedLock said that 53% of organisations using cloud storage services such as Amazon had accidentally exposed these to the public, with 'hundreds' leaking credentials through services such as Kubernetes.

The firm uncovered a similar attack on British insurance company Aviva in October 2017.


Source: BBC

Hits: 44
Posted by Arwa


Related Products




Tangazo Kwa Umma
Cybercrimes Act, 2015
The Value Added Tax Act, 2014

PUBLIC NOTICE: Compliance to register and use Dot Tz (.tz) Domain names in Tanzania


Trainee Software Developers
Tanzania Government Relations Analyst
General Manager
Finance and Grants Associate
Programs Officer
Partnership Capacity Building and Gender Coordinator
View All


Zuckerberg is 'uncomfortable' making content decisions for all users
The next version of Chrome will block autoplaying videos with sound
Apple is the sixth most desired employer in the US
Teenager hacks crypto-currency wallet
Facebook's Zuckerberg 'sorry' over Cambridge Analytica 'breach'
View All


Subscribe to our Newsletter


Add your Company in our Premium listing

Highlight your Company here and get it viewed by Thousands of visitors

Charges are as follows:
Monthly - Tshs.20,000/-
Yearly   - Tshs.200,000/-

To put your company in our Premium Listing fill the form below:

Name is required and must be characters only.

You can pay through:
TIGO PESA - 0659 233 378
MPESA        - 0764 202 807

Sign Up X