Hackers exploited a Log4j vulnerability to mine on Hewlett Packard servers

Malicious actors exploited a vulnerability in the popular Log4j library to gain control of AMD EPYC-based servers to mine the cryptocurrency Raptoreum. The report comes from Tom’s Hardware.

Raptoreum developers first detected an abnormal rise in hash rate on December 9. The number of devices involved in mining rose at a normal pace, while total compute power on the day of the breach nearly doubled from 200 MH/s to 400 MH/s.

The Raptoreum team found that the attackers used compromised Hewlett Packard 9000 server hardware for mining.

Hackers managed to obtain about 3.4 million Raptoreum tokens (over $80,000 at the time of writing). Subsequently 1.5 million tokens were sold on the CoinEx exchange. The remaining assets remain in a wallet.

Earlier reports indicated that attackers used the Log4j vulnerability to install hidden miners and other malware. The bug is called potentially the most serious discovered in recent years.

Read ForkLog bitcoin news in our Telegram — cryptocurrency news, prices and analytics.