Major bitcoin ATM maker General Bytes has experienced a security breach that led to the theft of $1.5 million worth of BTC from several of its crypto ATM operators.
In a recent blog post, Karel Kyowski, founder of General Bias, Said That a hacker was able to upload his own Java application to the company’s bitcoin ATMs, which allowed them to read and decrypt API keys to access funds on exchanges and hot wallets.
This resulted in the attacker gaining the ability to access the database, download usernames and passwords, turn off two-factor authentication, and scan terminal event logs for instances when customers scanned private keys at ATMs, Kyovsky said.
“We issued a statement urging customers to take immediate action to protect their personal information,” the company said in a Twitter post. “We urge all our customers to take immediate action and read the security bulletin carefully to protect their funds and personal information.”
Meanwhile, on-chain statistics Shows that the wallet used in the attack contained 56 BTC, worth more than $1.5 million, received at the time of the attack. Etherscan data showed that the attacker also transferred approximately 21.79 ETH ($39,043) via the Uniswap decentralized exchange (DEX).
General Bytes said that other wallets used by the hacker during the attack were for digital assets such as XRP, Binance, Cardano, DAI, Dogecoin, Shiba Inu, Tron, and more.
General Bytes shuts down its cloud service
General Bytes announced that both its cloud service and standalone servers had been compromised. As a result, the company is shutting down its cloud service. It said:
“It is theoretically (and practically) impossible to secure a system providing access to multiple operators at the same time, where some of them are bad actors. You have to set up your own standalone server. GB support you Will help you migrate your data from GB Cloud to your own standalone server.
The company advised BTC ATM operators to set up their own standalone servers and released two patches for its Crypto Application Server (CAS), which manages ATM operations.
“Please keep your CAS behind firewall and VPN. Terminals should also connect to the CAS via VPN,” Kyvsky wrote. “Additionally consider all your user passwords, and API keys for exchanges and hot wallets to be compromised. Please invalidate them and generate new keys.” and generate password.”
General Bytes is the largest cryptocurrency ATM manufacturer with thousands of machines located across the United States. According to its website, more than 15,000 bitcoin ATMs have been sold worldwide to buyers in more than 149 countries.
Notably, this is not the first time that General Bytes has experienced a breach. In August 2022, the company informed of A hack that led to the theft of bitcoins stored in an ATM. The company said at the time that the hackers had stolen about $16,000.