Lucky Sevens Monday article this time is talking of something very noteworthy for any of you who are running your master nodes in either your own servers or on any VPS platform.
This article is all about your Server security, and it applies even to miners to some extent. For I can from my own experience tell that one time my S9-machines got hacked by brute force exactly as Lucky Seven here is describing.
Yes indeed, one morning I woke up and thought network had gone down as all machines in a certain location had stopped mining. However, when I called to other guy who had some of his machines at the same place, he’s machines were all working fine.
So I went to check to the spot, and what did I find… Someone had changed my wallets in these machines into their own wallets, and funnily, they had even changed Litecoin miner’s wallet into a Bitcoin Wallet, meaning they didn’t actually get anything from that one.
How did this happen? The explanation was simple. I had not changed the default username/password combinations, while the other guy had. As I had remote access to these machines, so did anyone else on the internet.
Therefore someone went on through internet checking bitcoin miners default username/password combination, and if succeeded, changed their own wallet address through settings. Luckily in my case, my machines mined only for three hours for that hacker, but had I not been keeping my eye on my machines constantly, he could have got considerably much more.
To avoid amateur mistakes and losses like this, you better read Lucky Sevens’ newest article about some simple security measures you can take on your Servers, be they VPS or residing at your own house, they are equally vulnerable.
Get your Servers better protected by reading the article from any of the below places:
CryptoAcid
Publish0x
Steemit
Medium
Minds