We use cookies to improve your online experience. By continuing browsing this website, we assume you agree our use of cookies.
Language
English
Currency
USD (US Dollar)
Support Center
Your Cart 0 Itemes 0.00
ALL CATEGORIES
Home > Blog > Troubleshooting > Viruses, malware and remote attacks on Antminer – How to prevent and remove them?
Viruses, malware and remote attacks on Antminer – How to prevent and remove them?
By THANOS MINING February 9th, 2022
Viruses, malware and remote attacks on Antminer – How to prevent and remove them?

ANTMINER Antivirus Software Video Tutorial: https://youtu.be/LQSQuXDW8aw


We have recently received feedback from customers that their mining farms have been compromised by malicious attacks. Most of them observed that their mining pool worker names got tampered with and their miners were misused in other pools they didn’t sign up for, resulting in loss of profitability.  

This happened because customers visited malicious websites and downloaded applications that could load themselves and infect the miners.

In view of this, we are introducing some tips to defend yourself against and remove (if you are unfortunately, affected by) such threats.


Three Ways to Prevent:

1. Do not visit any potentially suspicious, unsafe websites.

2. Do not download or use any firmware that is not provided by BITMAIN, especially firmware claiming to help overclock your S9 or T9 series miners.

  • We would like emphasize that overclocking your miners or using any unauthorized firmware resulting miners malfunction will void your warranty immediately

3. Change your password, and remember it. A strong password is always your first line of defense.


Three Steps to Handle and Eliminate:

1. Quarantine your network (IMPORTANT!)

If you have detected a threat, identify the infected PC or miners.

What is the behavior of an infected miner? You will see that your miner is actually mining for a hidden pool - a pool that you did not sign up for, or see your wallet hijacked and coins stolen, etc... 

Check all your PC and miners and determine which PC or miners are infected by a virus. Then prevent the virus from spreading through network by quarantine the infected ones.

It is critical that you remove the compromised PC or miner from the network or add it to a "quarantine network." Otherwise, the virus will spread as it infects other computers on the network.

 


2. Reset to factory settings

Please refer the page below to learn more about how to reset your infected miners to factory settings.
You can also use a SD card to reset your miner to factory setting and flush the miner with the latest firmware.


3. Change your password!

The first thing you need to do after resetting your miner is to change the miner’s password to a strong and secure one.

Go to your miner User Interface > System > Administration.

In case you are not aware, the default password for our new or reset miner is "root".

Once you see the status is “Updating Password”, it means your new password works like a charm. Also, remember your password because you cannot reset or change your password if you do not remember it.

Search for the miners you would like to change, select all of them and choose “Change Password”.

Scanning less number of miners when using bulk managment tool
Previous
Scanning less number of miners when using bulk managment tool
Read More
Miner Fan Speed Meter User Manual
Next
Miner Fan Speed Meter User Manual
Read More
Recent Posts
CATEGORIES