Table of Contents
General Bytes, a company that makes bitcoin ATMs, has shut down its cloud services because hackers could get into users’ hot wallets and steal private information like private keys and passwords.
Security was broken at General Bytes
General Bytes, the company that makes bitcoin ATMs, said that a hacker could install and run a Java application on its machines. This gave the hacker access to user information and the ability to move money from hot wallets.
On March 17-18th, 2023, GENERAL BYTES experienced a security incident.
We released a statement urging customers to take immediate action to protect their personal information.
We urge all our customers to take immediate action to protect their funds and https://t.co/fajc61lcwR… https://t.co/g5FGqvqZQ7
— GENERAL BYTES (@generalbytes) March 18, 2023
General Bytes, based in Prague, is a significant player in the market for bitcoin ATMs. According to its website, it has sold more than 15,000 ATMs in 149 countries worldwide.
In a patch release bulletin sent out on March 18, the company warned that the hacker could remotely upload and run the Java application through the ATMs’ master service interface. This was done to steal user information and move money from hot wallets.
The founder of General Bytes, Karel Kyovsky, said that a hacker could get into sensitive data because of a security flaw. The breach affected General Bytes’ cloud service and other companies’ stand-alone servers.
Because of the breach, the hacker entered the company’s database, read and decrypted API keys used to access funds in hot wallets and exchanges, sent funds from hot wallets, and downloaded user names and password hashes. And turn off 2FA.
The hacker could also enter the terminal’s event logs and look for times when customers scanned their private keys at the ATM. Older versions of ATM software were logging this information, which the hacker used to his advantage.
General Bytes loses Cryptocurrency
The recent cyber attack on the company gave the hacker access to its hot wallets, which they used to send money.
General Bytes has found 41 wallet addresses used in the attack, but they haven’t said how much was stolen. On-chain data shows that one of the wallets got a total of 56 BTC worth more than $1.54 million in multiple transactions.
Also, another wallet got several ETH transactions totaling 21.82 ETH, worth about $36,000. In response to the breach, the company told BTC ATM operators to set up their standalone servers and released two patches for its crypto application server (CAS), which runs the ATM.
You must log in to post a comment.