General Bytes, a manufacturer of cryptocurrency ATMs, has recently reported a security breach in its cloud platform, resulting in the theft of over $1.5 million worth of users’ assets.
According to a statement released by the company, the hackers were able to install malware on the devices, allowing them to remotely download Java applications and gain access to user information, input data, and steal cryptocurrencies from hot wallets.
As a result of the breach, General Bytes has suspended its cloud service, but ATMs connected to third-party servers remain vulnerable.
Founder Karel Kyovsky has also confirmed that the hackers were able to access the company’s database, read and decrypt API keys, withdraw assets from hot wallets and exchanges, and disable two-factor authentication.
The company has published a list of 41 wallet addresses where the stolen funds were transferred, including 56 BTC (valued at over $1.54 million) and almost 22 ETH.
This isn’t the first time that General Bytes has been targeted by hackers. Last August, the company reported that its crypto application server had also been hacked.
Despite these security breaches, General Bytes has released over 15,000 cryptocurrency ATMs, which are used by companies from 149 countries.