Fun

Io.net responds to GPU metadata attack

News Feed - 2024-04-28 08:04:50

Amaka Nwaokocha12 hours agoIo.net responds to GPU metadata attackThe founder of Io.net will host a livestream on April 28 to demonstrate live cluster creation and calm fear, uncertainty and doubt.11193 Total views4 Total sharesNewsOwn this piece of crypto historyCollect this article as NFTJoin us on social networksIo.net, a decentralized physical infrastructure network (DePIN), recently experienced a cybersecurity breach. Malicious users exploited exposed user ID tokens to execute a system query language (SQL) injection attack, which led to unauthorized changes in device metadata within the graphics processing unit (GPU) network.


Husky.io, Io.net’s chief security officer, responded promptly with remedial actions and security upgrades to protect the network. Fortunately, the attack did not compromise the GPUs’ actual hardware, which remains secure due to robust permission layers.


The breach was detected during a surge in write operations to the GPU metadata application programming interface (API), triggering alerts at 1:05 am Pacific Standard Time on April 25.


In response, security measures were reinforced by implementing SQL injection checks on APIs and enhancing the logging of unauthorized attempts. Additionally, a user-specific authentication solution using Auth0 with OKTA was swiftly deployed to address vulnerabilities related to universal authorization tokens.Source: Hushky.io


Unfortunately, this security update coincided with a snapshot of the rewards program, exacerbating an expected decrease in supply-side participants. Consequently, legitimate GPUs that did not restart and update could not access the uptime API, causing a significant drop in active GPU connections from 600,000 to 10,000.


To address these challenges, Ignition Rewards Season 2 has been initiated in May to encourage supply-side participation. Ongoing efforts include collaborating with suppliers to upgrade, restart, and reconnect devices to the network.


The breach stemmed from vulnerabilities introduced while implementing a proof-of-work mechanism to identify counterfeit GPUs. Aggressive security patches before the incident prompted an escalation in attack methods, necessitating continuous security reviews and improvements.


Related:AI has a hardware crisis: Here’s how decentralized cloud can fix it


The attackers exploited a vulnerability in an API to display content in the input/output explorer, inadvertently revealing user IDs when searching by device IDs. Malicious actors compiled this leaked information into a database weeks before the breach.


The attackers leveraged a valid universal authentication token to access the “worker-API,” enabling changes to device metadata without requiring user-level authentication.


Husky.io emphasized ongoing thorough reviews and penetration tests on public endpoints to detect and neutralize threats early. Despite challenges, efforts are underway to incentivize supply-side participation and restore network connections, ensuring the platform’s integrity while serving tens of thousands of compute hours per month.


Io.net planned to integrate Apple silicon chip hardware in March to enhance its artificial intelligence and machine learning services.


Magazine:Real AI use cases in crypto: Crypto-based AI markets, and AI financial analysis# Blockchain# Cryptocurrencies# Security# HacksAdd reaction

News Feed

Brayden Lindrea6 hours agoCrypto advocates file amicus brief to address users’ Fourth Amendment privacy rightsThe amicus brief was filed to support an appeal against the U.S. Internal Revenue Service in relation to a 2
William Suberg9 hours agoBitcoin institutional inflows top $1B in 2023 amid BTC supply squeezeBitcoin and altcoins are beneficiaries of major inflows this year, while the question of a BTC supply squeeze remains.2428 Tot
Was Warren Buffett right? 5 Things to know in Bitcoin this week
William Suberg59 minutes agoWas Warren Buffett right? 5 Things to know in Bitcoin this weekBitcoin sees a giant $30,000 crash in a week while Ethereum retreats 40% and Berkshire Hathaway"s Apple sale takes on new meaning
Litecoin Attempts to Redeem Charlie Lee’s ‘Original Sin’ as LTC Markets Gain Momentum
Litecoin Attempts to Redeem Charlie Lee"s "Original Sin" as LTC Markets Gain Momentum Gradual warming to cryptocurrencies by financial companies combined with bo
3 reasons why Bitcoin (BTC) is up today
Marcel Pechman5 hours ago3 reasons why Bitcoin (BTC) is up todayWeak tech corporate earnings, spot Bitcoin ETF inflows and the potential arrival of a new major investor drove Bitcoin price above $63,000.3859 Total views4
50 Cent, Talib Kweli, Snoop Dogg and Nas: Celebrities Who Could Be Bitcoin Millionaires
50 Cent, Talib Kweli, Snoop Dogg and Nas: Celebrities Who Could Be Bitcoin Millionaires Many celebrities have mentioned the benefits of bitcoin and leveraged the asset for certai
On the Brink of a New Trend: Credit Suisse Receives 50 Billion Swiss Franc Bailout From Swiss National Bank
On the Brink of a New Trend: Credit Suisse Receives 50 Billion Swiss Franc Bailout From Swiss National Bank Credit Suisse has experienced a loss of confidence in the financial inst
Securities Watchdogs File Orders Against Crypto Lender Celsius
Securities Watchdogs File Orders Against Crypto Lender Celsius A news release published by the New Jersey government web portal indicates that the cryptocurrency lending platform C
Bitcoin critical indicator prints ‘bearish cross’ as it sinks below $58K
Ciaran Lyons5 hours agoBitcoin critical indicator prints ‘bearish cross’ as it sinks below $58KThe crossing of the indicator on two different timeframes has signaled to traders that short-term performance may be weak
All Eyes on the Next Fed Meeting: Market Trajectories Hinge on Decision
All Eyes on the Next Fed Meeting: Market Trajectories Hinge on Decision Equities, precious metals, and cryptocurrencies have been on a tear during the last three weeks of 2023, and
Bitcoin ATH Met With Mixed Whale Reactions – What’s The Market Signal?
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
Bitcoin, Ethereum Technical Analysis: ETH Climbs to Over $1,200 to Start the Weekend
Bitcoin, Ethereum Technical Analysis: ETH Climbs to Over $1,200 to Start the Weekend ETH moved into the $1,200 region to start the weekend, as prices rose for a third consecutive s