Everything related to cryptocurrencies attracts hackers. We have seen many cases of cyber attacks in which they try to steal cryptocurrency wallets, launch Phishing campaigns or fake applications. In this article, we are going to talk about how they attacked a company that has more than 1,000 Bitcoin ATMs. We are going to explain how this may have affected users.
Specifically, there are more than 1,200 ATMs spread throughout the United States and belong to the company Byte Federal. Basically, they are used to exchange cash for Bitcoins. It is one more business that takes advantage of the rise of these digital currencies, especially the most popular of them all.
Bitcoin ATMs attacked
But how exactly have these cashiers been attacked? What cybercriminals have done is exploit a GitLab vulnerability. In this way, they have managed to expose data of more than 58,000 clients. It must be taken into account that this is the largest company of this type of ATM in the United States. Therefore, it has many clients who have used its services.
The company itself is now sending messages warning of this fact. They indicate that they suffered a security breach last November, due to a failure in GitLab. It was on November 18 when they became aware of this fact, after detecting unauthorized access to one of their servers.
They say that, once they became aware of this incident, they quickly closed the platform to limit the damage as much as possible. Additionally, they fixed the problem on the affected server, to prevent this from happening again. However, they have not indicated exactly what that vulnerability was. It is known that they have corrected different errors during the last year, some of which could be exploited in this way.
Leaked data
What has been leaked? Basically, personal information of customers, as well as data that they have had to enter when using these ATMs. For example, the full name, date of birth and physical address have been leaked. Other data such as the telephone number or email address have also been exposed.
Beyond this personal data, the activity of the transactions carried out and even a photograph of the client has also been leaked. Logically, with all this, attackers can take advantage of it to impersonate and further compromise the security and privacy of the victim.
For example, they could use all that information for SIM Swapping attacks, with which they will achieve a duplicate of the SIM card. They could also access bank accounts or be able to launch various and more personal Phishing attacks, since they will have sensitive information that they can take advantage of.
The recommendation to all those who have used this type of ATM is to be alert to any message they may receive soon. They could try to steal passwords or request certain additional data. Ultimately, all this data can be sold on the Dark Web and made available to third parties.
