The well-known manufacturing company of electric vehicles Tesla has fallen a victim of hackers: thanks to the found vulnerability unknown have got access to cloud infrastructure of the firm and used her resources for cryptocurrency mining
The fact of breaking was found by specialists of the RedLock company specializing in cyber security. As they say in the report, hackers have used vulnerability in the Kubernetes service from Google which Tesla used. By means of this console malefactors got access to cloud infrastructure of the company on the basis of Amazon Web Services and used capacities for mining.
The representative of Tesla said in an interview that personal data of users was not taken during the break.
“We have a system of remunerations for search of bugs to stimulate similar researches. We corrected vulnerability within several hours after obtaining the message. An incident influenced only test cars. During our internal investigation no signs that personal information of clients or safety of cars have been somehow compromised.”
— the representative of Tesla added.
Unlike previous “cryptoattacks”, this time hackers didn’t begin to use public mining pool. Instead they have established their own OS, had hidden it by means of CloudFlare that allowed to disguise the server IP address with the mining pool of malefactors. Besides, hackers even took care of that load of CPU. During the break it remained minimum and didn’t cause suspicions.