{"id":372862,"date":"2021-11-26T19:30:00","date_gmt":"2021-11-26T16:30:00","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/hackers-can-use-compromised-google-cloud-accounts-to-install-mining-software-in-under-30-seconds-report\/"},"modified":"2021-11-26T19:30:00","modified_gmt":"2021-11-26T16:30:00","slug":"hackers-can-use-compromised-google-cloud-accounts-to-install-mining-software-in-under-30-seconds-report","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/hackers-can-use-compromised-google-cloud-accounts-to-install-mining-software-in-under-30-seconds-report\/","title":{"rendered":"# Hackers can use compromised Google Cloud accounts to install mining software in under 30 seconds: report"},"content":{"rendered":"

# Hackers can use compromised Google Cloud accounts to install mining software in under 30 seconds: report <\/strong>”
\n<\/p>\n

In a report aimed at assessing threats to Cloud users, Google\u2019s Cybersecurity Action Team said that some attackers are exploiting \u201cpoorly configured\u201d accounts to mine cryptocurrency.<\/p>\n

On Wednesday, the Google team said<\/a> out of 50 analyzed incidents that compromised the Google Cloud Protocol, 86% were related to crypto mining. The hackers used the compromised Cloud accounts to access resources from individuals\u2019 CPUs or GPUs to mine tokens or take advantage of storage space when mining coins on the Chia Network. <\/p>\n

However, Google\u2019s team reported that many of the attacks were not limited to a single malicious action like crypto mining, but also as a staging point to conduct other hacks and identify other vulnerable systems. According to the cybersecurity team, the actors usually gained access to Cloud accounts as a result of \u201cpoor customer security practices\u201d or \u201cvulnerable third-party software.\u201d<\/p>\n

\u201cWhile data theft did not app<\/a>ear to be the objective of these compromises, it remains a risk associated with the cloud asset compromises as bad actors start performing multiple forms of abuse,\u201d said the Cybersecurity Action Team. \u201cThe public Internet-facing Cloud instances were open to scanning and brute force attacks.\u201d<\/p>\n

The speed of the attacks was also noteworthy. According to Google\u2019s analysis, hackers were able to download crypto mining software to the compromised accounts within 22 seconds in the majority of the incidents analyzed. Google suggested that \u201cthe initial attacks and subsequent downloads were scripted events not requiring human intervention\u201d and said it would be nearly impossible to manually intervene to stop such incidents once they started.<\/p>\n

Related: <\/em><\/strong>Google bans 8 ‘deceptive’ crypto apps from Play Store<\/em><\/strong><\/p>\n

An attack on multiple users\u2019 Cloud accounts to gain access to additional computing power is not a new approach to illicitly mining crypto. \u2018Cryptojacking\u2019, as it is known by many in the space, has had several high-profile incidents including a hack of Capital One in 2019 to allegedly use credit card users\u2019 servers to mine crypto. However, browser-based cryptojacking as well as mining crypto after gaining access through deceptive app downloads is also still a problem for many users.<\/p>\n