Hackers reportedly plunder $20 million USD from insecure Ethereum nodes

Chinese security agency Qihoo 360 flagged concerns surrounding EOS’ blockchain earlier this year – and now the agency has warned that hackers may have made off with approximately $20 million USD in Ether as the result of theft from insecure network nodes.

Three years ago, Ethereum developers issued a security alert diagnosing a vulnerability within incorrectly configured Ethereum clients – specifically highlighting security placed on its JSON-RPC interface.

Earlier this year, the Qihoo 360 first warned users that malicious parties had begun scanning the same JSON-PRC port – 8545 – of the Geth Ethereum client in an attempt to plunder profits. At the time of the tweet, hackers had managed to make off with 3.96234 ETH.

Unfortunately, many node operators remained oblivious to the warnings – and now a wallet address associated with the same group bears a total of 38,642 ETH. The same wallet address shows an average transaction amount of as much as 7 ETH.

As Qihoo 360 notes, the theft has been achieved by simply scanning Ethereum nodes that had left JSON-RPC port 8545 open.

According to the Chinese security agency, copycat hackers have since similarly targeted network nodes using the same approach – effectively giving a three-year-old issue a new lease on life.

As the Ethereum community noted then, node operators have been urged to only run the default settings for each client they maintain.

Ethereum is down -1.70% day-on-day, and presently trades at $487.83 USD.

Related Articles

US SEC slaps Binance with a 13 charge lawsuit

The United States Securities and Exchange Commission files a lawsuit against leading crypto exchange Binance.

Bitcoin ATMs increase after months of downtrending

After four months of declining figures, the number of Bitcoin ATMs across the world increased significantly in May.

Crypto.com announces license for digital token services

Singapore-based cryptocurrency exchange Crypto.com has been granted the major payment institution (MPI) license.

Bitcoin to the Australian dollar at a massive discount

With the suspension of bank transfer services on Binance Australia, the price of the cryptocurrency has tanked.

See All