Skip to main content

MLB Team Washington Nationals Partners With Terra Blockchain Community, Ballpark Plans to Accept UST

On February 9, the American professional baseball team based in Washington, D.C., the Washington Nationals, announced the team has partnered with Terra, the open-source blockchain platform and decentralized autonomous organization (DAO). The Washington Nationals detail that the team is a “leading innovator” and is “consistently introducing new technologies to enhance the fan experience.” Washington Nationals Ink Long-Term Deal With Terra Major League Baseball (MLB) team the Washington Nationals has partnered with the blockchain platform and DAO Terra, according to an announcement published by the team on Wednesday. The deal with Terra follows a slew of sports-related deals with crypto firms, but the MLB team will be the first to partner with an open-source blockchain project. In addition to the partnership, the algorithmic stablecoin UST that’s issued on the Terra blockchain will be “accepted as a payment method at Nationals Park as early as next season.” “The Nationals continue t...
Post a Comment

Hackers Target Github Server Infrastructure to Mine Cryptocurrencies

Hackers Target Github Server Infrastructure to Mine Cryptocurrencies

Github services is under investigation after a series of reports on attacks against one of its infrastructures by running unauthorized crypto mining apps. Cybercriminals allegedly exploited some security flaws that could have been exploited to mine cryptos illicitly.

Attacks Exploit ‘Github Actions’

According to The Record, a Dutch security engineer, Justin Perdok, detected a cyberattacker targeting repositories belonging to Github. Attacks have been taking place since November 2020, said the report.

Perdok pointed out that the series of attacks “abused a Github feature called Github Actions,” which allows users to automatically execute workflows and tasks only when a specific event happens and then pull the trigger on the repositories.

That said, threat actors are taking advantage of the repositories where Github Actions are already enabled. The Record provided details on how the attack takes place:

The attack involves forking a legitimate repository, adding malicious GitHub Actions to the original code, and then filing a Pull Request with the original repository in order to merge the code back into the original.

However, the engineer clarified that the attacker just needs to fill the “Pull Request” to deploy the malicious workflows. Once it’s loaded, Github’s systems will be cheated, as it will read the attacker’s code and then download a crypto-mining software automatically.

100 Crypto Mining Apps Deployed in One Single Attack

But the malicious campaign seems to be powerful than thought, as Perdok told The Reported that he already detected hackers deploying almost 100 crypto-mining apps – such as Srbminer – in one single attack to mine multiple cryptocurrencies.

Still, the attack seems not to pose a danger to the users’ projects on the platform.

Github already commented on the matter, saying that they’re aware of the issue and “are actively investigating.” However, Perdok stated Github provided him that same comment last year when he reported the flaw.

What do you think about this flaw in Github’s infrastructure? Let us know in the comments section below.

Labels:

Comments

Post a Comment

Popular posts from this blog

Blockchain Software Firm Consensys Acquires Mycrypto Ethereum Wallet

On February 1, the blockchain infrastructure firm Consensys has revealed it has acquired the Ethereum-based wallet Mycrypto and plans to merge the wallet into Metamask. The price Consensys paid for Mycrypto was not disclosed but the announcement notes that the acquisition will “further improve the security of all the products.” Consensys Obtains Mycrypto Ethereum Wallet, Plans to Merge With Metamask in the Future Consensys has acquired the Ethereum-based wallet Mycrypto for an undisclosed sum according to an announcement released on Tuesday. The deal aims to strengthen the company’s Ethereum wallet Metamask and “enhance Web3 experiences.” The eventual merger between the two Ethereum interfaces will “provide users with a heightened experience that is even more extensive and secure,” according to Consensys. Consensys is an Ethereum software company led by one of the Ethereum co-founders Joseph Lubin. The Web3 wallet Metamask, with 21 million monthly active users (MAUs) is owned by C...
Post a Comment
Read more

Earn up to 50% APY by Staking $GLQ on GraphLinq App

PRESS RELEASE. The newest utility token to offer staking to its users/holders is GraphLinq Protocol’s $GLQ. As of this article, $GLQ has 4,500+ holders according to etherscan, excluding GLQ holders on CEX like Kucoin, MXC, Gate. This is a great step for the future of the project as it will further incentivize more users to hold. Explore more about GraphLinq, its staking mechanism & steps to stake. What Is GraphLinq? GraphLinq – The No Code protocol for automating actions on-chain & off-chain, launched in just March 2021, has come a long way bringing users in the crypto space a never seen model of integrating blockchain automation on any blockchain-related/non-related task. The goal of the GraphLinq protocol is to allow users to interact blockchains with any connected system as effortlessly as possible without any prior knowledge of coding. GraphLinq ecosystem currently consists of an engine, an integrated development environment ( IDE ) & an app to provide automated...
Post a Comment
Read more

The Congolese Mountain of Gold: Surprise Discovery in Africa Shows Metal’s Scarcity Is Hard to Prove

A myriad of gold bugs like to compliment the yellow precious metal for its ostensible scarcity, as estimates say only 2,500 to 3,000 tons of new gold is produced annually. While new gold discoveries have seemingly slowed, investigative studies also show that in some areas, gold is being smuggled into the economy by the ton, and often never accounted for as far as per annum issuance estimates. Recently, reports show a whole mountain of gold was discovered in the Congo, as the Democratic Republic of the Congo is well known for being a region that sees tons of smuggled gold filtered into the global financial system unreported. Surprise Gold Deposits Continue to Crack the Precious Metal’s Scarcity Proposition It has always been said that the precious metal gold (Au) is scarce, and some reports even say that gold mining on earth will end by the year 2050 . Additionally, estimates also show that there’s roughly 2,500 to 3,000 tons of new gold that is accounted for and enters into the fin...
Post a Comment
Read more