• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Western Digital: Disconnect WD My Book Live External HDDs From the Internet Immediately

Raevenlord

News Editor
Joined
Aug 12, 2016
Messages
3,755 (1.35/day)
Location
Portugal
System Name The Ryzening
Processor AMD Ryzen 9 5900X
Motherboard MSI X570 MAG TOMAHAWK
Cooling Lian Li Galahad 360mm AIO
Memory 32 GB G.Skill Trident Z F4-3733 (4x 8 GB)
Video Card(s) Gigabyte RTX 3070 Ti
Storage Boot: Transcend MTE220S 2TB, Kintson A2000 1TB, Seagate Firewolf Pro 14 TB
Display(s) Acer Nitro VG270UP (1440p 144 Hz IPS)
Case Lian Li O11DX Dynamic White
Audio Device(s) iFi Audio Zen DAC
Power Supply Seasonic Focus+ 750 W
Mouse Cooler Master Masterkeys Lite L
Keyboard Cooler Master Masterkeys Lite L
Software Windows 10 x64
Western Digital has issued a recommendation for all owners of the company's My Book Live and My Book Live Duo products - immediately disconnect them from the Internet or risk full data loss. The warning has come after reports started surfacing on distraught users of WD's My Book Live having their entire data deleted without any sort of user interaction or intervention. The recommendation will stay until the company can investigate and solve the issue that has led to the deletion of terabytes of data around the world.

Apparently, factory resets were undertaken on the drives without any sort of user interaction. Some users have shared logs on what exactly happened. Western Digital stopped supporting their My Book Live products back in 2015, which means there are now six full years of operation (at the least) without any security updates. WD seems to believe that individual user accounts were compromised, and the company issued a statement regarding the ongoing investigation. If you have one of these products, take heed, and disconnect them from your network.



View at TechPowerUp Main Site
 
Joined
Dec 5, 2013
Messages
600 (0.16/day)
Location
UK
And this is why any sane backup strategy will always have multiple backups of which at least 1x will be offline 99% of the time...
 

TheLostSwede

News Editor
Joined
Nov 11, 2004
Messages
16,001 (2.26/day)
Location
Sweden
System Name Overlord Mk MLI
Processor AMD Ryzen 7 7800X3D
Motherboard Gigabyte X670E Aorus Master
Cooling Noctua NH-D15 SE with offsets
Memory 32GB Team T-Create Expert DDR5 6000 MHz @ CL30-34-34-68
Video Card(s) Gainward GeForce RTX 4080 Phantom GS
Storage 1TB Solidigm P44 Pro, 2 TB Corsair MP600 Pro, 2TB Kingston KC3000
Display(s) Acer XV272K LVbmiipruzx 4K@160Hz
Case Fractal Design Torrent Compact
Audio Device(s) Corsair Virtuoso SE
Power Supply be quiet! Pure Power 12 M 850 W
Mouse Logitech G502 Lightspeed
Keyboard Corsair K70 Max
Software Windows 10 Pro
Benchmark Scores https://valid.x86.fr/5za05v
I know someone that was using one of these up until last month. Lucky coincidence he just bought a proper NAS.
 
Joined
Jul 16, 2014
Messages
8,115 (2.29/day)
Location
SE Michigan
System Name Dumbass
Processor AMD Ryzen 7800X3D
Motherboard ASUS TUF gaming B650
Cooling Artic Liquid Freezer 2 - 420mm
Memory G.Skill Sniper 32gb DDR5 6000
Video Card(s) GreenTeam 4070 ti super 16gb
Storage Samsung EVO 500gb & 1Tb, 2tb HDD, 500gb WD Black
Display(s) 1x Nixeus NX_EDG27, 2x Dell S2440L (16:9)
Case Phanteks Enthoo Primo w/8 140mm SP Fans
Audio Device(s) onboard (realtek?) - SPKRS:Logitech Z623 200w 2.1
Power Supply Corsair HX1000i
Mouse Steeseries Esports Wireless
Keyboard Corsair K100
Software windows 10 H
Benchmark Scores https://i.imgur.com/aoz3vWY.jpg?2
[tinhat on] someone had some damning evidence on one of those drives and the government needed to get rid of it. What better way than to cause a scandal such as this to cover destroying that one drive by hacking the lot of them? either that or the hacker doing this just wasnt good enough to limit the scope. [/tinhat off]

I feel bad for that effort wasted on downloaded porn saved on them drives... :D :roll:
 
Joined
Jul 30, 2014
Messages
121 (0.03/day)
Processor 5900x
Motherboard Crosshair 8 Impact
Cooling Air
Memory Hynix C-Die 3200MHz @CL14
Video Card(s) 3080 FTW3 Ultra
Storage Lots
Display(s) Many
Case Something that protects my innards
Power Supply Seasonic 850FX gen2
Wow, a device without any security updates for 6 years. This was bound to happen and I don't think even 1% of the blame is on the consumer here. A device sold under a "free cloud for life" marketing as such should be covered for security for as long as its lifespan. And clearly, the drives have had a longer lifespan than the utter pillocks who made the decision to pull support had predicted.
 
Joined
Jan 6, 2014
Messages
597 (0.16/day)
Location
Germany
System Name Main Machine
Processor Intel i9-13900KS
Motherboard ASUS ROG Maximus Z790 Apex
Cooling Water cooling, 2x EK-DDC 3.2 PWM, 1x360mm+1x240mm+1x120mm EK, Mora 360 Pro, EK-Quantum Velocity 2
Memory G.SKILL 32GB DDR5-7200, 7200J3445G16GX2-TZ5RS
Video Card(s) ASRock RX 7900 XTX Aqua
Storage 2x WD_BLACK SN850X 1TB und 2TB, 2x8TB Seagate Ironwolf
Display(s) ASUS ROG Strix XG27WQ 27inch 165Hz FreeSync Premium Pro
Case Cooler Master COSMOS C700P
Audio Device(s) Turtle Beach Elite Pro Tournament + Elite Pro TAC
Power Supply Corsair AX1600i 1600W Titanium
Mouse Logitech G903 LIGHTSPEED Wireless
Keyboard ROCCAT Ryos MK Pro
Software Win 11
That' s one of the reasons why I use proper 4 bay NAS from Synology and which is not open to Internet.
Mine is now 8 years old but thankfully Synology still provides updates until now.
 

Frick

Fishfaced Nincompoop
Joined
Feb 27, 2006
Messages
18,914 (2.86/day)
Location
Piteå
System Name Black MC in Tokyo
Processor Ryzen 5 5600
Motherboard Asrock B450M-HDV
Cooling Be Quiet! Pure Rock 2
Memory 2 x 16GB Kingston Fury 3400mhz
Video Card(s) XFX 6950XT Speedster MERC 319
Storage Kingston A400 240GB | WD Black SN750 2TB |WD Blue 1TB x 2 | Toshiba P300 2TB | Seagate Expansion 8TB
Display(s) Samsung U32J590U 4K + BenQ GL2450HT 1080p
Case Fractal Design Define R4
Audio Device(s) Line6 UX1 + some headphones, Nektar SE61 keyboard
Power Supply Corsair RM850x v3
Mouse Logitech G602
Keyboard Cherry MX Board 1.0 TKL Brown
VR HMD Acer Mixed Reality Headset
Software Windows 10 Pro
Benchmark Scores Rimworld 4K ready!
Western Digital WD My Book Live and WD My Book Live Duo (all versions) have a root Remote Command Execution bug via shell metacharacters in the /api/1.0/rest/language_configuration language parameter. It can be triggered by anyone who knows the IP address of the affected device, as exploited in the wild in June 2021 for factory reset commands,

Basically another tale of how important it is to not have stuff needlessly connected to the Internet. The affected drives were discontinued in 2014, and the bug above was found in 2018.
 

newtekie1

Semi-Retired Folder
Joined
Nov 22, 2005
Messages
28,472 (4.25/day)
Location
Indiana, USA
Processor Intel Core i7 10850K@5.2GHz
Motherboard AsRock Z470 Taichi
Cooling Corsair H115i Pro w/ Noctua NF-A14 Fans
Memory 32GB DDR4-3600
Video Card(s) RTX 2070 Super
Storage 500GB SX8200 Pro + 8TB with 1TB SSD Cache
Display(s) Acer Nitro VG280K 4K 28"
Case Fractal Design Define S
Audio Device(s) Onboard is good enough for me
Power Supply eVGA SuperNOVA 1000w G3
Software Windows 10 Pro x64
That' s one of the reasons why I use proper 4 bay NAS from Synology and which is not open to Internet.
Mine is now 8 years old but thankfully Synology still provides updates until now.
This is why I just use a proper server.
 
Joined
Jan 6, 2014
Messages
597 (0.16/day)
Location
Germany
System Name Main Machine
Processor Intel i9-13900KS
Motherboard ASUS ROG Maximus Z790 Apex
Cooling Water cooling, 2x EK-DDC 3.2 PWM, 1x360mm+1x240mm+1x120mm EK, Mora 360 Pro, EK-Quantum Velocity 2
Memory G.SKILL 32GB DDR5-7200, 7200J3445G16GX2-TZ5RS
Video Card(s) ASRock RX 7900 XTX Aqua
Storage 2x WD_BLACK SN850X 1TB und 2TB, 2x8TB Seagate Ironwolf
Display(s) ASUS ROG Strix XG27WQ 27inch 165Hz FreeSync Premium Pro
Case Cooler Master COSMOS C700P
Audio Device(s) Turtle Beach Elite Pro Tournament + Elite Pro TAC
Power Supply Corsair AX1600i 1600W Titanium
Mouse Logitech G903 LIGHTSPEED Wireless
Keyboard ROCCAT Ryos MK Pro
Software Win 11
As long as the hackers only deleted the data but did not write new bits onto the HDD, there is possibility to recover it.
There are tools available like this one:

It happened ones to me that I accidentally chose wrong drive for quick format while wanted to install fresh copy of Windows onto my computer.
I was able to recover the whole data by using such a tool.
 
Joined
May 7, 2020
Messages
252 (0.18/day)
As long as the hackers only deleted the data but did not write new bits onto the HDD, there is possibility to recover it.
There are tools available like this one:

It happened ones to me that I accidentally chose wrong drive for quick format while wanted to install fresh copy of Windows onto my computer.
I was able to recover the whole data by using such a tool.
Not that simple, if I remember correctly WD books can be encrypted, if you factory reset an encrypted drive, you are 1000% screwed.
 
Joined
Jan 6, 2014
Messages
597 (0.16/day)
Location
Germany
System Name Main Machine
Processor Intel i9-13900KS
Motherboard ASUS ROG Maximus Z790 Apex
Cooling Water cooling, 2x EK-DDC 3.2 PWM, 1x360mm+1x240mm+1x120mm EK, Mora 360 Pro, EK-Quantum Velocity 2
Memory G.SKILL 32GB DDR5-7200, 7200J3445G16GX2-TZ5RS
Video Card(s) ASRock RX 7900 XTX Aqua
Storage 2x WD_BLACK SN850X 1TB und 2TB, 2x8TB Seagate Ironwolf
Display(s) ASUS ROG Strix XG27WQ 27inch 165Hz FreeSync Premium Pro
Case Cooler Master COSMOS C700P
Audio Device(s) Turtle Beach Elite Pro Tournament + Elite Pro TAC
Power Supply Corsair AX1600i 1600W Titanium
Mouse Logitech G903 LIGHTSPEED Wireless
Keyboard ROCCAT Ryos MK Pro
Software Win 11
Not that simple, if I remember correctly WD books can be encrypted, if you factory reset an encrypted drive, you are 1000% screwed.
Yes in that case, one is really screwed. :oops:
 
Joined
Jan 27, 2015
Messages
451 (0.13/day)
System Name Marmo / Kanon
Processor Intel Core i7 9700K / AMD Ryzen 7 5800X
Motherboard Gigabyte Z390 Aorus Pro WiFi / X570S Aorus Pro AX
Cooling Noctua NH-U12S x 2
Memory Corsair Vengeance 32GB 2666-C16 / 32GB 3200-C16
Video Card(s) KFA2 RTX3070 Ti / Asus TUF RX 6800XT OC
Storage Samsung 970 EVO+ 1TB, 860 EVO 1TB / Samsung 970 Pro 1TB, 970 EVO+ 1TB
Display(s) Dell AW2521HFA / U2715H
Case Fractal Design Focus G / Pop Air RGB
Audio Device(s) Onboard / Creative SB ZxR
Power Supply SeaSonic Focus GX 650W / PX 750W
Mouse Logitech MX310 / G1
Keyboard Logitech G413 / G513
Software Win 11 Ent
Unbelievable. A product assoicated with "Cloud operation" but no security update for 6+ years?

I feel sorry for those who have lost their data. Hope they have some sort of regular offline backups. For those who still want to use these products as a standard NAS, they will have to create some routing rules on their routers to cut off WAN access from/to these WD boxes.
 
Joined
Jan 10, 2011
Messages
1,302 (0.27/day)
Location
[Formerly] Khartoum, Sudan.
System Name 192.168.1.1~192.168.1.100
Processor AMD Ryzen5 5600G.
Motherboard Gigabyte B550m DS3H.
Cooling AMD Wraith Stealth.
Memory 16GB Crucial DDR4.
Video Card(s) Gigabyte GTX 1080 OC (Underclocked, underpowered).
Storage Samsung 980 NVME 500GB && Assortment of SSDs.
Display(s) LG 24MK430 primary && Samsung S24D590 secondary
Case Corsair Graphite 780T.
Audio Device(s) On-Board.
Power Supply SeaSonic CORE GM-650.
Mouse Coolermaster MM530.
Keyboard Kingston HyperX Alloy FPS.
VR HMD A pair of OP spectacles.
Software Ubuntu 22.04 LTS.
Benchmark Scores Me no know English. What bench mean? Bench like one sit on?
And that is why I don't leave my unit powered up unless I'm using it, and have firewall rules for it at the router blocking any and all access to or from the internet.
But I guess it's time to salvage the drives in this PoS and use them in a safer, significantly better performing, classical fashion...

Not that simple, if I remember correctly WD books can be encrypted, if you factory reset an encrypted drive, you are 1000% screwed.
Iirc, the encryption is done transparently on the hardware level, factory reset doesn't affect these keys, afaik. I think the problem here would be that recovery software can't get direct filesystem access. Though I do agree that the encryption would become a problem when attempting to directly connect the internal drive through a SATA connection).
 
Joined
Jan 28, 2021
Messages
845 (0.73/day)
Unbelievable. A product assoicated with "Cloud operation" but no security update for 6+ years?

I feel sorry for those who have lost their data. Hope they have some sort of regular offline backups. For those who still want to use these products as a standard NAS, they will have to create some routing rules on their routers to cut off WAN access from/to these WD boxes.
The problem here is expecting people using drives like this is to create custom network rules to isolate and insecure device because the vendor dropped the ball or lied about its life cycle (depending on how you look it) is unrealistic, they just want to plug something in and have it work. A 4 bay QNAP would be very scary and or out of their budget.

Tricky situation but I would say its on the user to have their data in more than one place, but its also on WD to keep up on security updates if thats the expectation of the product.
 
Joined
Jul 25, 2006
Messages
12,014 (1.86/day)
Location
Nebraska, USA
System Name Brightworks Systems BWS-6 E-IV
Processor Intel Core i5-6600 @ 3.9GHz
Motherboard Gigabyte GA-Z170-HD3 Rev 1.0
Cooling Quality case, 2 x Fractal Design 140mm fans, stock CPU HSF
Memory 32GB (4 x 8GB) DDR4 3000 Corsair Vengeance
Video Card(s) EVGA GEForce GTX 1050Ti 4Gb GDDR5
Storage Samsung 850 Pro 256GB SSD, Samsung 860 Evo 500GB SSD
Display(s) Samsung S24E650BW LED x 2
Case Fractal Design Define R4
Power Supply EVGA Supernova 550W G2 Gold
Mouse Logitech M190
Keyboard Microsoft Wireless Comfort 5050
Software W10 Pro 64-bit
As I noted elsewhere, this is not good. I sure hope, once all is done and over with we don't discover that this malware exploited a vulnerability WD already knew about but failed to act accordingly - as seems to be a major factor in most security breaches in the last few years.

That is, most hacks and breaches are successful because the IT security people in these organizations already knew of the vulnerability, had the necessary patch or fix (often for months!), but - due to shear laziness and lack of proper guidance from negligent upper management, they sat on their thumbs and neglected to install the patch or apply the fix.
:mad:
:mad:
:mad:
:mad: :banghead: :mad: :banghead:

If nothing else, as mentioned above, this should be yet another warning/reminder to everyone that we must all have "multiple" backups of any and all data we don't want to lose - and preferably with one copy maintained "off-site".
 
Joined
Nov 4, 2005
Messages
11,655 (1.73/day)
System Name Compy 386
Processor 7800X3D
Motherboard Asus
Cooling Air for now.....
Memory 64 GB DDR5 6400Mhz
Video Card(s) 7900XTX 310 Merc
Storage Samsung 990 2TB, 2 SP 2TB SSDs and over 10TB spinning
Display(s) 56" Samsung 4K HDR
Audio Device(s) ATI HDMI
Mouse Logitech MX518
Keyboard Razer
Software A lot.
Benchmark Scores Its fast. Enough.
If they were smart they would offer a "trade" for new product at a slight discount and then offer a small fee subscription service for updated security software.


None of the internet attached devices will have a unlimited lifetime, hardware and software flaws are always going to be found and only offline local copies are immune to security issues.
 
Joined
Jul 25, 2006
Messages
12,014 (1.86/day)
Location
Nebraska, USA
System Name Brightworks Systems BWS-6 E-IV
Processor Intel Core i5-6600 @ 3.9GHz
Motherboard Gigabyte GA-Z170-HD3 Rev 1.0
Cooling Quality case, 2 x Fractal Design 140mm fans, stock CPU HSF
Memory 32GB (4 x 8GB) DDR4 3000 Corsair Vengeance
Video Card(s) EVGA GEForce GTX 1050Ti 4Gb GDDR5
Storage Samsung 850 Pro 256GB SSD, Samsung 860 Evo 500GB SSD
Display(s) Samsung S24E650BW LED x 2
Case Fractal Design Define R4
Power Supply EVGA Supernova 550W G2 Gold
Mouse Logitech M190
Keyboard Microsoft Wireless Comfort 5050
Software W10 Pro 64-bit
If they were smart they would offer a "trade" for new product at a slight discount and then offer a small fee subscription service for updated security software.
That would be a smart marketing move. But I think a "deep" discount (rather than slight) would do better to keep WD users from jumping to a competing brand. This will be especially true if it turns out this was a known issue that easily could have been avoided.
 
Joined
Feb 20, 2019
Messages
7,194 (3.86/day)
System Name Bragging Rights
Processor Atom Z3735F 1.33GHz
Motherboard It has no markings but it's green
Cooling No, it's a 2.2W processor
Memory 2GB DDR3L-1333
Video Card(s) Gen7 Intel HD (4EU @ 311MHz)
Storage 32GB eMMC and 128GB Sandisk Extreme U3
Display(s) 10" IPS 1280x800 60Hz
Case Veddha T2
Audio Device(s) Apparently, yes
Power Supply Samsung 18W 5V fast-charger
Mouse MX Anywhere 2
Keyboard Logitech MX Keys (not Cherry MX at all)
VR HMD Samsung Oddyssey, not that I'd plug it into this though....
Software W10 21H1, barely
Benchmark Scores I once clocked a Celeron-300A to 564MHz on an Abit BE6 and it scored over 9000.
Uh, if you're using something that's actively connected to the web and accessible from an external IP without security updates, you're either a moron or extremely ignorant.
 

newtekie1

Semi-Retired Folder
Joined
Nov 22, 2005
Messages
28,472 (4.25/day)
Location
Indiana, USA
Processor Intel Core i7 10850K@5.2GHz
Motherboard AsRock Z470 Taichi
Cooling Corsair H115i Pro w/ Noctua NF-A14 Fans
Memory 32GB DDR4-3600
Video Card(s) RTX 2070 Super
Storage 500GB SX8200 Pro + 8TB with 1TB SSD Cache
Display(s) Acer Nitro VG280K 4K 28"
Case Fractal Design Define S
Audio Device(s) Onboard is good enough for me
Power Supply eVGA SuperNOVA 1000w G3
Software Windows 10 Pro x64
Unbelievable. A product assoicated with "Cloud operation" but no security update for 6+ years?
On one hand, you can't expect a company to support a product forever even if it is web connected.

However, WD support for these products was really crap. They came out in late 2011/early 2012. WD seems to have discontinued them by the end of 2012. Then they completely dropped support and stopped updating them in 2015. That is only 3 or maybe 4 years of support. That is pathetic for a web connected device that stores people's data. I'd expect 10 years of security updates at least. Maybe not feature updates, but at least security updates.

Uh, if you're using something that's actively connected to the web and accessible from an external IP without security updates, you're either a moron or extremely ignorant.
You gotta realize the people that buy these tend to be tech ignorant. I mean, how many people out there are running routers with significantly outdated firmware? Even the ones with an web-update function sit with outdated firmware because people never log into the interface and actually tell it to apply the update.
 
Joined
Oct 22, 2014
Messages
13,210 (3.83/day)
Location
Sunshine Coast
System Name Black Box
Processor Intel Xeon E3-1260L v5
Motherboard MSI E3 KRAIT Gaming v5
Cooling Tt tower + 120mm Tt fan
Memory G.Skill 16GB 3600 C18
Video Card(s) Asus GTX 970 Mini
Storage Kingston A2000 512Gb NVME
Display(s) AOC 24" Freesync 1m.s. 75Hz
Case Corsair 450D High Air Flow.
Audio Device(s) No need.
Power Supply FSP Aurum 650W
Mouse Yes
Keyboard Of course
Software W10 Pro 64 bit
At least they should be happy their content wasn't downloaded then the drive reset.
I guess there would be some very nervous people wondering what happened to their data.
 
Joined
Jul 25, 2006
Messages
12,014 (1.86/day)
Location
Nebraska, USA
System Name Brightworks Systems BWS-6 E-IV
Processor Intel Core i5-6600 @ 3.9GHz
Motherboard Gigabyte GA-Z170-HD3 Rev 1.0
Cooling Quality case, 2 x Fractal Design 140mm fans, stock CPU HSF
Memory 32GB (4 x 8GB) DDR4 3000 Corsair Vengeance
Video Card(s) EVGA GEForce GTX 1050Ti 4Gb GDDR5
Storage Samsung 850 Pro 256GB SSD, Samsung 860 Evo 500GB SSD
Display(s) Samsung S24E650BW LED x 2
Case Fractal Design Define R4
Power Supply EVGA Supernova 550W G2 Gold
Mouse Logitech M190
Keyboard Microsoft Wireless Comfort 5050
Software W10 Pro 64-bit
Well, according to this WD security alert last updated yesterday,

We are reviewing log files which we have received from affected customers to further characterize the attack and the mechanism of access. The log files we have reviewed show that the attackers directly connected to the affected My Book Live devices from a variety of IP addresses in different countries. This indicates that the affected devices were directly accessible from the Internet, either through direct connection or through port forwarding that was enabled either manually or automatically via UPnP.

That would indicate the users opened up access, exposing these devices to the outside world, without properly securing them. You can't blame WD if the user opens the front door and almost invites the bad guy in.

It does appear, however, that many users were able to recover their data with standard data recovery software, like Recuva. But of course, they should already have a backup copy of it anyway.
 
Joined
Sep 24, 2020
Messages
94 (0.07/day)
System Name Room Heater Pro
Processor AMD Ryzen™ 7 5800X
Motherboard ASUS ROG Crosshair VIII Hero (WI-FI) X570
Cooling Corsair iCUE H115i ELITE CAPELLIX Liquid CPU Cooler, 280mm radiator
Memory Thermaltake ToughRAM RGB, 64GB DDR4, 3600MHz CL18, Dual Channel
Video Card(s) Asus TUF GeForce RTX™ 3090
Storage Adata XPG GAMMIX S50, 2TB, NVMe, M.2 SSD
Display(s) Dell G3223Q 32", 4K UHD, 144Hz, FreeSync Premium Pro
Case Thermaltake View 51 TG ARGB
Audio Device(s) Logitech G433 USB DAC
Power Supply Asus ROG Thor, 1200W Platinum
Mouse Logitech Pro X Superlight
Keyboard Asus ROG Strix Flare
VR HMD Oculus Quest 2
Software Windows 11 21H2
Hmm. I wonder if this is related to Chia farming.
 
Joined
Jun 10, 2014
Messages
2,890 (0.81/day)
Processor AMD Ryzen 9 5900X ||| Intel Core i7-3930K
Motherboard ASUS ProArt B550-CREATOR ||| Asus P9X79 WS
Cooling Noctua NH-U14S ||| Be Quiet Pure Rock
Memory Crucial 2 x 16 GB 3200 MHz ||| Corsair 8 x 8 GB 1333 MHz
Video Card(s) MSI GTX 1060 3GB ||| MSI GTX 680 4GB
Storage Samsung 970 PRO 512 GB + 1 TB ||| Intel 545s 512 GB + 256 GB
Display(s) Asus ROG Swift PG278QR 27" ||| Eizo EV2416W 24"
Case Fractal Design Define 7 XL x 2
Audio Device(s) Cambridge Audio DacMagic Plus
Power Supply Seasonic Focus PX-850 x 2
Mouse Razer Abyssus
Keyboard CM Storm QuickFire XT
Software Ubuntu
Hook it up to the Internet, they said. It will be fun, they said. :rolleyes:
 

newtekie1

Semi-Retired Folder
Joined
Nov 22, 2005
Messages
28,472 (4.25/day)
Location
Indiana, USA
Processor Intel Core i7 10850K@5.2GHz
Motherboard AsRock Z470 Taichi
Cooling Corsair H115i Pro w/ Noctua NF-A14 Fans
Memory 32GB DDR4-3600
Video Card(s) RTX 2070 Super
Storage 500GB SX8200 Pro + 8TB with 1TB SSD Cache
Display(s) Acer Nitro VG280K 4K 28"
Case Fractal Design Define S
Audio Device(s) Onboard is good enough for me
Power Supply eVGA SuperNOVA 1000w G3
Software Windows 10 Pro x64
That would indicate the users opened up access, exposing these devices to the outside world, without properly securing them. You can't blame WD if the user opens the front door and almost invites the bad guy in.
Not if uPnP was used, then the device opened the port itself, possibly without the user even knowing it was happening.
 
Joined
Jul 5, 2013
Messages
25,559 (6.52/day)
If you have one of these products, take heed, and disconnect them from your network.
And this is yet another reason why people should ALWAYS keep things OFF the internet. There is absolutely no reason an external drive should be connected to the internet. Ever!

BTW, for those wondering, it would seem that the drive of subject in the above aritcle used the Universal Plug & Play protocol. Such a service should NEVER be allowed to run, regardless of the reason or need. It is a SwissCheese type security problem waiting to be exploited.
 
Top