Fun

Major Cryptocurrency ATM Manufacturer General Bytes Hacked, Over $1.5M in Bitcoin Stolen

News Feed - 2023-03-19 02:03:28

Major Cryptocurrency ATM Manufacturer General Bytes Hacked, Over $1.5M in Bitcoin Stolen


General Bytes experienced a security incident on March 17 and 18 that enabled a hacker to remotely access the master service interface and send funds from hot wallets, according to the company and sources. The breach forced a majority of U.S.-based crypto automated teller machine (ATM) operators to temporarily shut down. The hacker was able to liquidate 56.28 bitcoins, worth approximately $1.5 million, from about 15 to 20 crypto ATM operators nationwide. Crypto ATM Operators Temporarily Shut Down After General Bytes Security Breach Enables Hacker to Liquidate $1.5M in Bitcoin and Other Cryptocurrencies


The largest cryptocurrency automated teller machine (ATM) manufacturer, General Bytes, has produced 9,505 such machines globally, with thousands located in the United States. On Saturday, March 18, the company informed the public of a serious security incident that occurred on March 17 as well.


“We released a statement urging customers to take immediate action to protect their personal information,” the company explained at 4:42 p.m. (ET) on Saturday. “We urge all our customers to take immediate action to protect their funds and personal information and carefully read the security bulletin,” the firm added. The number of General Bytes ATMs located around the world according to Coin ATM Radar statistics.


General Bytes’ security bulletin said the attacker was able to remotely upload their own Java application using the master service interface, which is typically used by terminals to upload videos. The attacker had access to BATM user privileges and was also able to access the database, read and decrypt API keys used to access funds in hot wallets and exchanges. In addition, the hacker could download usernames, access their password hashes, turn off 2FA, and send funds from hot wallets.


Bitcoin.com News spoke with a U.S.-based cryptocurrency automated teller machine (ATM) operator who confirmed that all U.S. operators using General Bytes machines were shut down nationwide for the evening. The operator also mentioned that servers would have to be rebuilt from the ground up, which can be a lengthy process.


Reportedly, General Bytes is transitioning crypto ATM operators to self-hosted servers. In the security bulletin, General Bytes stated that the company is discontinuing its cloud service. Furthermore, the firm explained that it had conducted multiple security audits since 2021, and none of them had identified this vulnerability.


According to onchain statistics, the hacker siphoned 56.28 bitcoins worth approximately $1.5 million and also liquidated dozens of other cryptocurrencies such as ETH, USDT, BUSD, ADA, DAI, DOGE, SHIB, and TRX. The bitcoin (BTC) address holding the 56.28 BTC has not moved the funds since its last transaction at 3:20 a.m. on March 18. Some digital currencies were transferred to different locations, and a fraction was sent to the decentralized exchange (DEX) platform Uniswap.


General Bytes has experienced issues before, recording a security flaw on August 18, 2022. The attacker at the time leveraged a zero-day attack to “create an admin user remotely via CAS administrative interface via a URL call on the page that is used for the default installation on the server and creating the first administration user.”


As for the March 17 and 18, 2023 hack, General Bytes not only disclosed the addresses used in the attack but also three IP addresses used by the attacker. The source who spoke with Bitcoin.com News on Saturday evening further noted that while their firm’s system was hacked, the company runs a full node that’s “locked down enough” to prevent the attacker from accessing funds. Tags in this story 2FA, ada, API keys, ATM, ATM attack, ATMs down, Automated Teller Machine, Bitcoin, Breach, BUSD, Cloud Service, Crypto, Crypto ATM attack, Cryptocurrency, DAI, Doge, ETH, Exchanges, Funds, General Bytes, General Bytes ATMs, General Bytes Crypto ATMs, Hack, hot wallets, IP addresses, java, Liquidation, nationwide, onchain statistics, operators, Security, self-hosted servers, shib, trx, uniswap, US ATM Operators, USDT, Vulnerability, zero-day attack


What do you think about the breach that affected General Bytes? Share your thoughts about this subject in the comments section below. Jamie Redman


Jamie Redman is the News Lead at Bitcoin.com News and a financial tech journalist living in Florida. Redman has been an active member of the cryptocurrency community since 2011. He has a passion for Bitcoin, open-source code, and decentralized applications. Since September 2015, Redman has written more than 6,000 articles for Bitcoin.com News about the disruptive protocols emerging today. UBS Considers Acquiring Credit Suisse, Requests Government Backstop in Deal NEWS | 12 hours ago Analysts Suspect Banking Crisis Triggered "Resting Bull Market" in Gold, Silver Could Print Much Higher Gains NEWS | 14 hours ago


Image Credits: Shutterstock, Pixabay, Wiki Commons Previous articleMike Novogratz Warns of Credit Crunch in US and Globally — Expects Fed to Cut Rates ‘Sooner Than We Think’ Next articleChair of EU Parliament’s Committee on Budgets Calls for Crypto Ban Amid Banking Turmoil Disclaimer: This article is for informational purposes only. It is not a direct offer or solicitation of an offer to buy or sell, or a recommendation or endorsement of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article. Read disclaimerShow comments More Popular NewsIn Case You Missed ItOman to Incorporate Real Estate Tokenization in Virtual Assets Regulatory Framework


Real estate tokenization is set to be incorporated into Oman Capital Markets Authority (OCMA)"s virtual asset regulatory framework. According to an advisor with the authority, the tokenizing of real estate will open investment opportunities for local and foreign investors. Real ... read more.NFT Sales Volume Saw a Small Uptick This Week — Moonbirds, Mutant Apes Take Top Sales Bitcoin ATM Operator Indicted in New York Allegedly Running Illegal Business Attracting Criminals Economist Predicts the Fed"s Response to Inflation Will Push Crypto Higher Terra"s Algorithmic Dollar-Pegged Crypto UST Is Now the Third-Largest Stablecoin

News Feed

William Suberg13 hours agoLitecoin halving is 13 days away — So where is the LTC price rally?Going against Bitcoin is a tough pill to swallow for investors in one of the oldest altcoins.5166 Total views63 Total sharesL
Survey: 1 in 10 Irish Investors, Quarter of Young People Hold Cryptocurrencies
Survey: 1 in 10 Irish Investors, Quarter of Young People Hold Cryptocurrencies Investors in Ireland are attracted to digital opportunities offering better returns and often find th
US lawmaker asks Congress to treat Binance exec in Nigeria as a ‘hostage’
Turner Wright2 hours agoUS lawmaker asks Congress to treat Binance exec in Nigeria as a ‘hostage’Rep. Rich McCormick called on the US government to formally declare Tigran Gambaryan as a hostage if his criminal case
Coinbase sues SEC, FDIC over FOIA noncompliance
Josh O"Sullivan11 hours agoCoinbase sues SEC, FDIC over FOIA noncomplianceCoinbase’s lawsuits target the SEC and FDIC for alleged noncompliance with FOIA requests regarding Ethereum’s proof-of-stake transition.1338 T
Former UK Chancellor Lord Hammond Warns About Crypto Investing — Says ‘It’s Gambling Money’
Former UK Chancellor Lord Hammond Warns About Crypto Investing — Says "It"s Gambling Money" Former U.K. chancellor of the exchequer Lord Hammond has reportedly warned about inves
Janet Yellen Says ‘Critical’ to Establish Strong Crypto Regulation — ‘We Haven’t Suggested Outright Banning’
Janet Yellen Says "Critical" to Establish Strong Crypto Regulation — "We Haven"t Suggested Outright Banning" U.S. Treasury Secretary Janet Yellen says “it is critical to pu
Fidelity Investments’ Digital Asset Custody Services Arm Expands to Asia
Fidelity Investments" Digital Asset Custody Services Arm Expands to Asia Fidelity Digital Asset Services has revealed the company is expanding into Asia and plan
Queensland law enforcement agency calls for more powers to seize crypto
Arijit Sarkar12 hours agoQueensland law enforcement agency calls for more powers to seize cryptoThe Crime and Corruption Commission is calling for a reform of Queensland’s Criminal Proceeds Confiscation Act 2002 to cou
Crypto Bulls See $644M Bloodbath As Bitcoin Dips Below $105,000
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
Crypto advocates file brief against SEC's investor tracking database
Derek Andersen3 hours agoCrypto advocates file brief against SEC"s investor tracking databaseThe Consolidated Audit Trail would gather a monumental amount of data, and more than it is meant to when it exposes the identit
Report: FTX Co-Founder SBF Retains White-Collar Lawyer Who Represented Ghislaine Maxwell
Report: FTX Co-Founder SBF Retains White-Collar Lawyer Who Represented Ghislaine Maxwell On Dec. 6, 2022, the former FTX CEO Sam Bankman-Fried (SBF) reportedly retained the attorne
Professor Steve Hanke Says US Economy Was Flat Over the Last Year, but Stresses ‘It’s Going to Hit South’
Professor Steve Hanke Says US Economy Was Flat Over the Last Year, but Stresses ‘It’s Going to Hit South’ Amid the chaotic economy, plagued with central bank tinkering, suppl