A hacker with access to a Canadian Internet provider hijacked net traffic from large foreign networks to steal more than US $83,000 in virtual currency over a four-month period, a cyber security company said Monday.
Researchers with the U.S.-based Dell SecureWorks said the hacker’s attack started last February and stopped in May, after the Canadian Internet service provider (ISP) was notified.
Joe Stewart, director of malware research at SecureWorks, said the hacker targeted firms that hosted servers generating virtual currencies such as Bitcoin — including Amazon in the U.S. and OVH in France — and redirected some activity.
“We were able to track the origins to a Canadian ISP,” he told The Canadian Press from Las Vegas, where he was attending a computer security conference.
“Someone had access to a router at that ISP. It had to be someone who managed to hack into that router and gained administrative rights, or someone who already had access.”
Stewart said the hacker likely works alone, and could be a former or then-current employee of the ISP.
Pat Litke, another security researcher at SecureWorks, said the firm is “fairly confident” the attacks came from Canada, but the hacker may be based elsewhere.
“To execute the cyberattack, you literally can be anywhere in the world, as long as you have privileged access,” he said.
According to SecureWorks, a total of 51 networks from 19 other ISPs were “compromised” in the attack, which also netted the hacker a few dollars in another virtual currency, Dogecoin.
Bitcoins are produced through using programs to solve complex algorithms — dubbed “mining” — a process which also validates the currency’s transactions.
Stewart said he noticed the hacking in March when he realized his personal mining — done through one of the affected servers — had been hijacked, and notified the Canadian ISP in May, after which the “malicious activity” stopped.
This article has been extracted from http://www.citynews.ca, please click on this link to read the article in full http://www.citynews.ca/2014/08/11/hacker-used-canadian-internet-provider-to-steal-83k-bitcoins-researchers/
Montash is a multi-award winning, global IT recruitment firm. Specialising in permanent and contract positions across mid-senior appointments which cover a wide range of industry sectors and IT functions, including:
ERP, BI & Data, Information Security, IT Architecture & Strategy, Scientific Technologies, Demand IT and Business Engagement, Digital and E-commerce, Infrastructure and Service Delivery, Project and Programme Delivery.
With offices based in London, Montash has completed assignments in over 30 countries and has appointed technical professionals from board level to senior and mid-management in permanent and contract roles.