Special shout out to You Tube technical crypto and all around cool dude Son of a Tech for the technical reason as to why this is possible. The specific video on this topic can be found here. I will go over it briefly in a nutshell.
So, if your into Crypto mining and use the HIVE OS system, this could pertain to you if your a Darwin award winner for not changing default passwords and leaving your network unsecured. This (I’m calling it a user exploit) is because it really is not 100% fault of HIVE OS. Although it could be argued that during setup, you should be forced to change the default password, but it does not as of this writing. This also applies to weak or unsecured networks, leaving SSH port open, DMZ a rig with default passwords wins you a Darwin award. Your now mining for someone else.
Symptoms: Your mining but your not seeing an increase in rewards, your rig is rebooting every 30 or so minutes.
Solution: Watch the video for an explanation before doing anything. Change your passwords, find the files and nuke em, secure your network. You find rouge files one named a.sh (which is an exe in Linux). There are other dependent files.
In a nutshell, some genius decided to create more malware for people by implementing a simple flaw in the human condition. This malware changes the wallet your mining to and restarts the OS every 30 ish minutes to ensure it is still pointed and the hacker. Essentially your now mining for them. Since a lot of these types of setups are not monitored frequently, this can go on for a while before you notice. It’s very simple. It needs to use the default password, it also needs a way in, SSH, DMZ, possibly other common remote ports. It can not only be deployed via WAN but your LAN if it gets on your network, (wi-fi, another infected computer with unrelated remote virus etc.)
CHANGE YOUR PASSWORDS! and don’t go using someone’s birthday or you home address etc.
P.S. DOGE TO THE MOON!
