This is an automated archive made by the Lemmit Bot.
The original was posted on /r/homeassistant by /u/tiochino on 2026-03-23 01:22:32+00:00.
I have a storage room in my house, and the water pump for my well resides in the storage room. I have a problem where I frequently turn the water on outside and forget about it, so I set up a monitor in Home Assistant to alert me when the well pump has been on for more than an hour. I used a microphone in the storage room and infer that the pump is running when the noise level is above a certain threshold. Last night it alerted at 2am and I went through the house looking for water left on, there was none. I went to the storage room, where my home server also happens to live. The well pump was quiet but the fan on my server was running full blast. That is what my "pump monitor" detected. I went back to bed, in the morning I discovered that all of my server CPUs were maxed out. A little investigation revealed that I stupidly had a frigate instance running on an unsecured and exposed port. A hacker found the vulnerability, rewrote my frigate config file, and was running a crypto mining process masquerading as a camera on my system. So, in essence, my pump monitor in Home Assistant alerted me that a hacker was exploiting my system.