Hackers hacked bitcoin ATMs and gained access to users' personal data

Representatives of the cryptomachine manufacturer General Bytes reported that the company’s cloud platform was hacked. The hackers installed malware on the devices and gained access to users' assets, stealing more than $ 1.5 million in total.

On March 17−18th, 2023, GENERAL BYTES experienced a security incident.

We released a statement urging customers to take immediate action to protect their personal information.

We urge all our customers to take immediate action to protect their funds and https://t.co/fajc61lcwR…

— GENERAL BYTES (@generalbytes) March 18, 2023

According to General Bytes, the malware still allows attackers to remotely upload Java programs to the company’s cryptomats. With their help, hackers gain access to confidential user information and steal cryptocurrencies from hot wallets. The company has suspended its cloud service, but cryptomats connected to third-party servers remain vulnerable.

«Hackers have gained access to the General Bytes database. They can read and decrypt API keys used to access funds on hot wallets and exchanges, and withdraw assets from them. Attackers can even download user password hashes and disable two-factor authentication ,» said Karel Kiowski, founder of General Bytes.

The company published a list of 41 wallet addresses to which hackers transferred funds. They withdrew the most bitcoins — one of the wallets holds 56 BTC, which is $ 1.59 million at the time of writing. In addition, the attackers were able to steal almost 22 ETH, which is about $ 39,644.

General Bytes is one of the leading cryptomachine manufacturers that supplies its equipment to 149 countries around the world. According to data published on the company’s official website, General Bytes has produced more than 15,000 cryptomachines.