June 13, 2018 380By Nathan Bentley
“Due to its sensitive role, the RPC is disabled by default. Developers include warnings to not switch on the interface unless the user is fully secured by advanced firewalls, access control lists, or credible authentication systems. As an additional measure, developers configure RPCs to accepts requests only from local interfaces instead of the third party. However, the report noted that experienced developers are increasingly tampering with Ethereum applications, augmenting function at the cost of user security. Additionally, users fail to carefully read the documentation and unknowingly install exposed applications – making them a prime target for attackers.”The report in question here, refers to a report by 306 Netlab who had initially exposed the hack. As a matter of fact, they actually warned that it could happen back in March 2018. Now, it does seem as if this attack has happened through long term access to the port, therefore this is not an instant one-off occurrence that has seen a tonne of Ethereum stolen, instead, it has been a bit more of a drip feed process. Not that this makes it okay, I just guess it has less of a sudden impact on the markets. Above all, we should remember that $20 Million is an awful lot of money. You can read the full report by BTCManager for yourself, here- https://btcmanager.com/hacker-group-steals-over-20-million-of-ethereum-after-exploiting-port-8584/ For now, it does seem as if there is nothing more to worry about. As this news surfaces though, we do expect to see the volatility of Ethereum continue.