A second exploit has emerged in the sad WD My Book Live data deletion saga

A second exploit has emerged in the sad WD My Book Live data deletion saga

Channel:
United Kingdom Colin Boyd SEO
Subscribers:
4,200
Published on ● Video Link: https://www.youtube.com/watch?v=z-ftUaGoawA


Duration: 3:06
111 views
1

Reported today on The Verge

For the full article visit: https://www.theverge.com/2021/6/29/22555959/wd-my-book-live-second-exploit-authentication-factory-reset-without-password-root-control

Reported today in The Verge.

A second exploit has emerged in the sad WD My Book Live data deletion saga

It looks like there may have been more than one exploit used to cause the mass deletion of data from WD My Book Live NASes last week, according to a report from Ars Technica. When news broke that people were finding that their data was missing, some (including WD itself), pointed to a known exploit from 2018, which allowed for root access of the device. However, it appears as though there's more going on than was initially suspected.

If you have one of these devices, you should unplug it from the internet before reading any further - it's clear at this point that your data is at risk if the device is online.

The second exploit, reported by Ars Technica, doesn't give an attacker full control over the device like the other exploit. It just allows them to remotely wipe the device without having to know the password. Tragically for those who lost data, it seems that code that would've prevented this was actually present in the WD My Book Live's software, but it appears to have been commented out (or deactivated) by WD at some point - because of this change, the software didn't run authentication when asked to do a factory reset.

WD had stopped supporting these devices in 2015. While the exploit has been around since at least then, it's not necessarily a scenario where an obvious security issue persisted through years and years of updates. The question still remains, though, as to why hackers decided to factory reset the devices.

Ars Technica has a wild theory, based on analysis by security firm Censys: the data deletion happened as the result of a fight between hackers, with one botnet owner potentially trying to take over or disrupt another's. One hacker (or group of



Other Videos By Colin Boyd SEO


2021-06-30LG’s Mini LED TVs to release in the US starting in July
2021-06-29WhatsApp’s Spanish language content moderators push for equal pay in internal letter
2021-06-29Roku launches its new originals with a Demi Lovato talk show
2021-06-29Apple isn’t backing down from its hybrid work model, according to internal note
2021-06-29Zoom acquires an AI company building real-time translation
2021-06-29United’s latest jets will offer Bluetooth for in-flight entertainment
2021-06-29A Twitter bug temporarily removed the option to switch to the chronological feed on the web
2021-06-29Sen. Warren calls for ‘meticulous’ review of Amazon’s MGM acquisition
2021-06-29Here are the best Amazon Echo deals right now
2021-06-29Nacon RIG Pro Compact review: compact with caveats
2021-06-29A second exploit has emerged in the sad WD My Book Live data deletion saga
2021-06-29Elon Musk counts on 500,000 Starlink users within the next year
2021-06-29Hasan Piker on the problem with YouTube debate culture
2021-06-29Federal agencies use facial recognition from private companies, but almost nobody is keeping track
2021-06-29T-Mobile is offering iPhone owners no-hassle network ‘test drives’
2021-06-29HBO Max launches outside the US in 39 new territories
2021-06-29Remedy’s Project Condor is a multiplayer spinoff of Control
2021-06-29Facebook announces Bulletin, its Substack newsletter competitor
2021-06-29Tesla Model 3 gets safety recommendation back after ditching radar
2021-06-29Good Omens is returning for a second season on Amazon Prime Video
2021-06-29Exposure notification apps could be more effective if they’re better at assessing risk