1. Forum
  2. Usenet
  3. ALT.COMP.HARDWARE

  • WD My Book NAS devices are being remotely wiped clean worldwide

    From Yrrah@21:1/5 to All on Sat Jun 26 16:49:33 2021
    "Western Digital My Book NAS owners worldwide found that their devices
    have been mysteriously factory reset and all of their files deleted.
    WD My Book is a network-attached storage device that looks like a
    small vertical book that you can stand on your desk. The WD My Book
    Live app allows owners to access their files and manage their devices
    remotely, even if the NAS is behind a firewall or router.
    Today, WD My Book owners worldwide suddenly found that all of their
    files were mysteriously deleted, and they could no longer log into the
    device via a browser or an app.
    When they attempted to log in via the Web dashboard, the device stated
    that they had an 'Invalid password.'(...)
    It is believed that a threat actor performed a mass scan of the
    Internet for vulnerable devices and used this vulnerability to issue
    the factory-reset command."
    Article: <https://www.bleepingcomputer.com/news/security/wd-my-book-nas-devices-are-being-remotely-wiped-clean-worldwide/>

    Nice one... ;-)

    Yrrah

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From KenW@21:1/5 to All on Sat Jun 26 11:18:59 2021
    On Sat, 26 Jun 2021 16:49:33 +0200, Yrrah <Yrrah-acf@acf.invalid>
    wrote:

    "Western Digital My Book NAS owners worldwide found that their devices
    have been mysteriously factory reset and all of their files deleted.
    WD My Book is a network-attached storage device that looks like a
    small vertical book that you can stand on your desk. The WD My Book
    Live app allows owners to access their files and manage their devices >remotely, even if the NAS is behind a firewall or router.
    Today, WD My Book owners worldwide suddenly found that all of their
    files were mysteriously deleted, and they could no longer log into the
    device via a browser or an app.
    When they attempted to log in via the Web dashboard, the device stated
    that they had an 'Invalid password.'(...)
    It is believed that a threat actor performed a mass scan of the
    Internet for vulnerable devices and used this vulnerability to issue
    the factory-reset command."
    Article: ><https://www.bleepingcomputer.com/news/security/wd-my-book-nas-devices-are-being-remotely-wiped-clean-worldwide/>

    Nice one... ;-)

    Yrrah

    The "CLOUD" strikes again. People never learn.


    KenW

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)