Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Bitcoin Security Network Privacy The Internet

Nearly 3,000 Bitcoin Miners Exposed Online Via Telnet Ports, Without Passwords (bleepingcomputer.com) 43

An anonymous reader quotes a report from Bleeping Computer: Dutch security researcher Victor Gevers has discovered 2,893 Bitcoin miners left exposed on the internet with no passwords on their Telnet port. Gevers told Bleeping Computer in a private conversation that all miners process Bitcoin transactions in the same mining pool and appear to belong to the same organization. "The owner of these devices is most likely a state sponsored/controlled organization part of the Chinese government, " Gevers says, basing his claims on information found on the exposed miners and IP addresses assigned to each device. "At the speed they were taken offline, it means there must be serious money involved," Gevers added. "A few miners is not a big deal, but 2,893 [miners] working in a pool can generate a pretty sum." According to a Twitter user, the entire network of 2,893 miners Gevers discovered could generate an income of just over $1 million per day, if mining Litecoin.
This discussion has been archived. No new comments can be posted.

Nearly 3,000 Bitcoin Miners Exposed Online Via Telnet Ports, Without Passwords

Comments Filter:
  • Crap, I hope nobody port scans the Kermit server I'm running.
    • I use telnet extensively in my internal network.
      Dead simple interface, capable of moving complex data as JSON or MIME64 strings.

      • NAUGHTY!
        Bad networkBoy! Bad!
        Even on a local network, rsh and friends aren't quite as pants-around-your-ankles as telnet is; but there's really no excuse for having an Internet-facing machine running telnet in this day and age. ssh exists for a reason, and even that has issues, as we've seen. If you're gonna run old-coot UUCP-era technology, you're gonna get pwned.
  • aren't secure anyway, being transmitted in plain text. That's why we have SSH.
    • by Anonymous Coward

      Just because the password can be overheard doesn't mean there shouldn't be one.

  • Telnet in 2017 (Score:5, Informative)

    by manu0601 ( 2221348 ) on Friday September 01, 2017 @06:50PM (#55126693)
    It is weird to see new devices with telnet enabled. SSH is reliable technology for quite some time.
  • Wow TELNET has been in the news a lot lately.

There is no opinion so absurd that some philosopher will not express it. -- Marcus Tullius Cicero, "Ad familiares"

Working...