Earlier this year, Tesla was hit by a cryptojacking attack.
A misconfiguration of the electric-car maker’s Amazon Web Services environment allowed hackers to get in. But, instead of installing ransomware or stealing data the attackers installed software that mined cryptocurrency.
This kind of attack is hard to detect. Records aren’t being compromised, data isn’t erased. Cryptojacking software runs silently in the background, making money for the criminals.
“It’s the compromise du jour,” Karl Sigler, threat intelligence manager at Trustwave Holdings, a Chicago-based security firm, said. “It’s just effortless money coming into the criminal’s bank account.”