from the nas-based-beowulf-mining-cluster dept.
ThreatPost is reporting that a hacker, well-versed in malware and exploit development, took advantage of vulnerabilities in Synology network attached storage boxes popular with home users to mine more than $600,000 worth of the digital currency Dogecoin.
Researchers Pat Litke and David Shear of Dell SecureWorks' Counter Threat Unit published details of the attack, which exploited four vulnerabilities in the Synology boxes' DiskStation Manager Linux-based operating system. The bugs were reported last September and patched in February.
"To date, this incident is the single most profitable, illegitimate mining operation. This conclusion is based in part on prior investigations and research done by the Counter Threat Unit, as well as further searching of the Internet," they said. "As cryptocurrencies continue to gain momentum, their popularity as a target for various malware will continue to rise."