Share this article
500 Million Dogecoins Mined by Unknown Hacker in Malware Attack
The hacker used data hubs to mine $200,000 in dogecoin in an attack researchers called "unprecedented".
By Stan Higgins
Updated Sep 11, 2021, 10:53 a.m. Published Jun 17, 2014, 9:00 p.m.
Make us preferred on Google
An unknown hacker has reaped an estimated 500 million dogecoins – worth nearly $200,000 at today's prices – by hacking into a series of data storage hubs for computer networks, according to SecureWorks, an information services subsidiary of personal computing giant Dell.
The SecureWorks report revealed that the hacker targeted network attached storage (NAS) boxes made by Taiwan-based Synology Inc. and used its computing power to mine dogecoin through a private pool. The action caused problems for Synology’s customers, some of whom reported poor performance on Facebook in February.
STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
SecureWorks called the months-long intrusion unprecedented, saying:
"To date, this incident is the single most profitable, illegitimate mining operation."
Following reports of an issue, the investigators ultimately discovered a folder entitled ‘PWNED’ that contained the mining software CPUMiner and the capacity to conceal the program.
The address the mined dogecoins were being sent to was also identified, revealing the accumulation of more than 400 million dogecoins. Along with another wallet, the hacker generated roughly 500 million dogecoins between January and April.
In addition to exploring the technical aspects of the attack, SecureWorks delved into the possible identity of the assailant, suggesting that "the findings strongly indicate that the threat actor is of German descent".
Hacker used private pool
The configuration file of the software that was infecting Synology’s NAS boxes pointed to the presence of hidden mining software. CPUMiner, the program used, had been modified to run on the boxes and was connecting to a dogecoin pool not associated with any public mining group, SecureWorks said. Each NAS box acted as an individual miner, connecting to the pool and generating dogecoins.
SecureWorks accessed the data being sent to the NAS boxes, which allowed them to ascertain the dogecoin wallet address holding the fraudulently mined dogecoins, as well as the possible identity of the hacker.
Dubbed "foilo.root3" in the configuration file, the user appears to have a connection with accounts on GitHub and BitBucket, although it remains unclear whether the name is unique to a single person.
Mining malware gains
The dogecoin mining attack represents one of the more creative approaches to generating digital currency through fraudulent means. Other recent attempts have found wrongdoers using unique means to upload software to mine bitcoin, but in nearly all cases, the program was designed to conceal itself and its operations.
Last month, unknown hackers attempted to distribute bitcoin mining malware through a modified torrent file of the video game Watch Dogs. This attack was notable as it targeted another form of online piracy.
A more unusual concealed attempt to create mining botnets out of mobile phones was uncovered in April. At the time, a group of wallpaper apps listed on the Google Play app store were discovered to contain bitcoin mining programs and were subsequently removed.
Image via Dig Doge
More For You
KuCoin captured a record share of centralised exchange volume in 2025, with more than $1.25tn traded as its volumes grew faster than the wider crypto market.
What to know:
- KuCoin recorded over $1.25 trillion in total trading volume in 2025, equivalent to an average of roughly $114 billion per month, marking its strongest year on record.
- This performance translated into an all-time high share of centralised exchange volume, as KuCoin’s activity expanded faster than aggregate CEX volumes, which slowed during periods of lower market volatility.
- Spot and derivatives volumes were evenly split, each exceeding $500 billion for the year, signalling broad-based usage rather than reliance on a single product line.
- Altcoins accounted for the majority of trading activity, reinforcing KuCoin’s role as a primary liquidity venue beyond BTC and ETH at a time when majors saw more muted turnover.
- Even as overall crypto volumes softened mid-year, KuCoin maintained elevated baseline activity, indicating structurally higher user engagement rather than short-lived volume spikes.
More For You
Bitcoin hash rate slides during U.S. winter storm while markets shrug off mining disruption
The temporary loss of mining power underscores academic concerns that geographic and pool concentration can magnify infrastructure failures, though markets showed little immediate reaction.
What to know:
- Bitcoin’s hashrate fell about 10 percent during a U.S. winter storm, underscoring how local power disruptions can strain the network’s capacity to process transactions.
- Researchers have shown that concentrated mining, as seen in a 2021 regional outage in China, can lead to slower block times, higher fees and broader market disruptions.
- With a few large pools now controlling most of Bitcoin’s hashrate, the network is increasingly vulnerable to localized infrastructure failures, even as the price of BTC remains largely unaffected in the short term.
Top Stories
