After the last update of HiveOS version 0.6-25@190402, I noticed that my rig was stopping to show the yields.
Checking the conslusions on the system panel, I noticed that there was a wallet address different from mine.
I took the address and accessed, with this it was possible to prove that they hacked the update and inserted configurations to steal the users.
Attachment prints that prove the action.
I missed about 1 day of work, but there may be people who lost a little more and are still losing without knowing.
I recommend that everyone check their mining configurations.