Hackers Target Microsoft Azure Servers to Illegally Mine Crypto

Friday, 12/06/2020 | 11:32 GMT by Arnab Shome
  • These servers are generating massive computing power needed for machine learning applications.
Hackers Target Microsoft Azure Servers to Illegally Mine Crypto
Bloomberg

The machine learning cluster of Microsoft Azure cloud computing services has become the recent target of hackers for mining digital currencies.

In a blog post published on Wednesday, the technology giant revealed the attack on its services which allowed perpetrators to mine Cryptocurrencies at the expense of the customers who rented Microsoft’s cloud computing services.

Machine learning needs massive computing powers which often pushes third-party developers to rent cloud computing services instead of maintaining hardware.

Hackers simply exploited misconfigured nodes to mine crypto by redirecting the computing powers to mine crypto instead of performing the originally designated tasks of running machine learning codes.

Similar to other crypto jacking incidents, the hijackers mined Monero on Microsoft servers.

According to the Redmond-headquartered company, compromised clusters it discovered counted in “tens”

The company specified that the infected clusters were running Kubeflow, an open-source framework for machine-learning applications in Kubernetes. This application is used to deploy scalable applications across a large number of computers.

The changes in the systems made using a vulnerability on a dashboard which can only be accessed by the administrators.

“Azure Security Center has detected multiple campaigns against Kubernetes clusters in the past that have a similar access vector: an exposed service to the Internet,” Yossi Weizman, a security research software engineer at Microsoft, noted. “However, this is the first time that we have identified an attack that targets Kubeflow environments specifically.”

Enterprise servers are often becoming targets

Cryptojacking becomes popular with the skyrocketing value of digital currencies. Though mostly confined to personal computers, hackers are also targeting enterprise servers to make more profits using massive computing power.

Just last month, a security firm report confirmed that at least 1,000 enterprise computers were targeted by the hackers to illegally mine digital currencies.

The machine learning cluster of Microsoft Azure cloud computing services has become the recent target of hackers for mining digital currencies.

In a blog post published on Wednesday, the technology giant revealed the attack on its services which allowed perpetrators to mine Cryptocurrencies at the expense of the customers who rented Microsoft’s cloud computing services.

Machine learning needs massive computing powers which often pushes third-party developers to rent cloud computing services instead of maintaining hardware.

Hackers simply exploited misconfigured nodes to mine crypto by redirecting the computing powers to mine crypto instead of performing the originally designated tasks of running machine learning codes.

Similar to other crypto jacking incidents, the hijackers mined Monero on Microsoft servers.

According to the Redmond-headquartered company, compromised clusters it discovered counted in “tens”

The company specified that the infected clusters were running Kubeflow, an open-source framework for machine-learning applications in Kubernetes. This application is used to deploy scalable applications across a large number of computers.

The changes in the systems made using a vulnerability on a dashboard which can only be accessed by the administrators.

“Azure Security Center has detected multiple campaigns against Kubernetes clusters in the past that have a similar access vector: an exposed service to the Internet,” Yossi Weizman, a security research software engineer at Microsoft, noted. “However, this is the first time that we have identified an attack that targets Kubeflow environments specifically.”

Enterprise servers are often becoming targets

Cryptojacking becomes popular with the skyrocketing value of digital currencies. Though mostly confined to personal computers, hackers are also targeting enterprise servers to make more profits using massive computing power.

Just last month, a security firm report confirmed that at least 1,000 enterprise computers were targeted by the hackers to illegally mine digital currencies.

About the Author: Arnab Shome
Arnab Shome
  • 6654 Articles
  • 102 Followers
Arnab is an electronics engineer-turned-financial editor. He entered the industry covering the cryptocurrency market for Finance Magnates and later expanded his reach to forex as well. He is passionate about the changing regulatory landscape on financial markets and keenly follows the disruptions in the industry with new-age technologies.

More from the Author

CryptoCurrency