Viruses, Malware, and Remote Attacks on Bitmain Antminer S19 Series – How to Prevent and Remove Them?


Recently, we’ve heard from customers who say that malicious attacks have compromised their mining operations. The majority of them noticed that their mining pool worker names were changed and that their Bitmain Antminer S19 Series were used in pools they had not intended to join, which led to a loss of profitability.

Customers downloaded programs that could load themselves onto the miners and spread infection as a result of visiting malicious websites and downloading malicious software.

Due to this, we are providing some advice on how to avoid becoming a victim of (or at least lessen the impact of) such threats.

Three Ways to Prevent Viruses, Malware, and Remote Attacks on Bitmain Antminer S19 Series

1. Don’t go to any potentially dangerous or suspicious websites.

2. Avoid downloading or utilizing firmware that is not offered by Bitmain, particularly firmware that promises to help you overclock your S9 or T9 series miners.

  • We would like to emphasize that overclocking your miners or using any unauthorized firmware resulting miners malfunction will void your warranty immediately

3. Change your password and keep it safe. Your best line of defense is always a strong password.

Three Steps to Handle and Eliminate Viruses, Malware, and Remote Attacks on Bitmain Antminer S19 Series

1. Protect Your Network (CRITICAL!)

Determine the affected PC or miners if you have detected a threat.

How does an infected miner behave? You’ll discover that your miner is actually mining for a secret pool that you didn’t join, or you’ll notice that your wallet has been taken over and that money has been taken, etc…

To find out which of your computers or miners have a virus infection, check all of your computers and miners. After that, quarantine those who are infected to stop the virus from spreading throughout the network.

It is critical that you remove the compromised PC or miner from the network or add it to a “quarantine network.” Otherwise, the virus will spread by infecting additional computers connected to the network.


2. Reset to Factory Settings

Please see the page below for more information on how to return your infected miners to their default settings.

To restore your miner to factory settings and update it with the newest firmware, you can also use an SD card.

3. Change Your Password

After resetting your miner, the first thing you must do is change the miner’s password to one that is both strong and secure.

Go to your miner User Interface > System > Administration.


In case you are not aware, the default password for our new or reset miner is “root”.

Once you see the status is “Updating Password”, it means your new password works like a charm. Additionally, keep in mind your password since forgetting it prevents you from changing or resetting it.


How can I change the passwords of several miners at once?

We recognize you may own tens or even hundreds of miners rather than just one. Use the APminerTool (V1.0.7) to change the passwords of all of your miners at once!

The Antpool team created the APminerTool specifically for our ANTMINER.

Search for the miners you would like to change, select all of them and choose “Change Password”.


Please feel free to get in touch with us if you have any questions so we can help.

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top