![]() Abdine also states that users who were affected by the initial hack seem to also have been infected with malware that makes the devices a part of a botnet called Linux.Ngioweb. In a statement to arsTechnica, Derek Abdine, CTO of security firm Censys, believes the second exploit which caused the mass deletion was used by a different hacker to “wrest control of the already compromised devices” and prevent Western Digital from being able to release an update to fix the corrupted configuration files. ![]() It turns out that even if WD had patched that exploit, this other bug would have still allowed hackers to remote delete users’ data. Since the exploit was discovered years after the company officially stopped supporting the devices, a fix was never issued. This discovery comes just days after users from all over the world first reported their devices had been affected to which WD posted an advisory on its website and stated the attack used a vulnerability found in late 2018.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |