Romania is still at the beginning of the road in terms of promoting itself as a crypto destination. However, it seems that users keep in mind the lack of regulation in this country and manage to do illegal acts.
A Romanian-based researcher discovered mining operations within the Institute of Nuclear Physics, assuming that it could be an employee behind the incident.
It has been discovered that a resident of Romania, an employee in a public institution, has been mining Monero, using the computers within the enterprise. Ștefan Tănase, the cybersecurity researcher, located the activity in Măgurele city.
In the following moments, he posted a picture on Twitter, mentioning that “Nice XMR mining rig at Romania’s National Institute for Physics and Nuclear Engineering! I wonder if EU funds are covering both the electricity and the GPUs – hxxp://194.102.59.:443/ (AS2614).”
The director of ELI project, Nicolae Zamfir, has revealed for HotNews that mining operations have as a source an IP address located within the nuclear company but exclaimed that “the system doesn’t belong to the much-publicized Laser Extreme Light Infrastructure Nuclear Physics (ELI-NP) laser project. ”
He also announced that due to an investigation, the researchers will be able to identify the mining operations and their coordinators.
Ștefan Tănase assumes that we are talking about an employee of the institute that has access to the computer network. He mined Monero, using the energy resources of the enterprise. Once the system is set up, the coordinator is not required to keep eyes on the process.
“This case best illustrates one of the most sophisticated threats that large organizations face with regards to the digital world: an employee who comprises a network through his actions, either by installing a program on his computer or bringing a terminal that he may connect to the organization’s network. It’s very difficult to use technology to protect oneself against rogue insiders,” added Tănase.
This isn’t the first case in which the main players are employees. Unfortunately, there is still no way the organizations could prevent 100% such incidents.