Hello, welcome to the Thursday, October 26, 2017 edition of the Sandtonet Storm Center's Stormcast.

My name is Johannes Ulrich.

And the I'm recording from Berlin, Germany.

Coin Hive, the company behind the crypto coin mining JavaScript, has had a setback in its quest to clean up and present itself as a more

reputable company.

In this latest incident, sometime late on Monday, Coin Hive's Cloudflare account was compromised

and requests for its popular cryptocurrency mining script were redirected to a modified

version with a fixed side key, giving the owner of that particular side key exclusive credit

for any cryptocurrency mine. The root cause of this issue was apparently a breach of Kickstarter. Kickstarter's username and

password database was leaked a couple years ago, and Coin Hive used the same username and password

that they used for Kickstarter for its Cloudflare account, which then of course led to its compromise.

So lesson learned here, do not use the same password on different sites,

and of course, if possible, use to factor.

And I think I have said similar words a few times before.

And if you own a Dell PC, then you may be familiar with Dell's backup and recovery service.

This is a service that you can use to restore your system to factory default.

And essentially what it does is it does backup recovery disk for your operating system and

pre-installed software well sadly softthings.com a company that operates the service for del apparently

lost control of the domain del backup and recovery cloud storage.com.

Now, if you have Dell's software installed, then it will periodically check that domain

and potentially install updates from it. With losing control of the domain, a typo typo squatting company took it over and

registered it and then apparently malware was later served from that domain it isn't

...