HiveOS HACK


#1

about twice a day my mining rig’s are taken over and mining to another wallet. I have changed my passwords (already had 2FA active), Changed SSH password and am using ETHEHASH not Claymore. still my rig is getting taken over.
It is not profitable to mine if i am loosing 3 hours a day to this takeover as with the depressed amount for crypto and power cost.
Is there any mitigation step i can take to stop this from happening?
Is the HiveOS team addressing this issue with a patch?
if so, when will this be addressed?
Basically what are our options?

Thank you for your time.


#2

Why you write here instead write to Hive support? By forum it’s more complicated.
Create ticket by sending your problem/question to bee@hiveos.farm


#3

Hi Halo,

Posting here my issue benefits the community as anyone else having the same issue would be able to read the resolution rather than everyone submitting the same problem over and over again. i will try your recommendation.
Thank you


#4

the same here lost 1 month any help


#5

i think that happen from 15 or 20 August help us


#6

Create ticket to support bee@hiveos.farm


#7

I had the same issue few months back. The only fix for me was to change my username and password and I created a new account. Later found out that someone was going thru a combination of email addresses and password to hack Hiveos (Heard from nulled.to). Anyway, that’s my 2 cents.


#8

The Satori Botnet works on a specific set of ports. I shut down the ports on my router and that worked. Also, shut down VNC and SHELLINABOX, google search will give you Linx commands for that.

  • Port 37215: Known, exploiting vulnerabilities CVE-2017-17215, Huawei recently released the relevant statement
  • Port 52869: Known, exploiting vulnerabilities CVE-2014-8361, related to some Realtek SDK, the exploit code PoC is published since 2016
  • Port 3333: Newly emerged, exploiting ETH mining remote management interface mentioned above.