Western Digital My Cloud Service Hacked, Customer Data Under Ransom

DeathtoGnomes · Apr 15, 2023

I see they opened the email and clicked.

A Computer Guy said:
For really important stuff I go out into the woods with ski masks, night vision goggles, and a verity of musical tambourines for tapping out encrypted Morse code

smoke signals by the early adopters.

ymbaja · Apr 15, 2023

R0H1T said:
Yes generally speaking the big boys are much much better at it than anyone except perhaps doomsday preppers, never had any issues with my Gmail/google/Hotmail/outlook/AWS accounts. So in that they "can be" trusted a lot more, but having this data physically near you feels more "secure" for most people out there ~ even though in reality it's not.

While I agree the difference is centralized data is a huge target for attackers vs some random drive at “Bob’s” house.

Minus Infinity · Apr 15, 2023

Bit fucking late to be proactive after the hack don't you think.

Tsukiyomi91 · Apr 15, 2023

local data vault/archive >>>> any "cloud" services. Putting your own personal data on a cloud storage is NEVER a good idea, not to mention putting your trust on WD's track record of piss-poor management.

AusWolf · Apr 15, 2023

Harthad said:
View attachment 291519

Exactly!

What have I always said about never storing precious and personal data on the cloud? Mmm... I can't remember. :rolleyes:

bobbybluz · Apr 15, 2023

There's a very good reason why I have around 30 external HDD's full of data and another 5 with only backup .iso's of operating systems on them.

Bones · Apr 15, 2023

And yet another example and reason why I have never before or ever will trust "The Cloud" since it can be hacked with all your shit taken or trashed - Maybe both.
And that's just the data itself, no telling what else they can do after they go through it all.

ymbaja said:
While I agree the difference is centralized data is a huge target for attackers vs some random drive at “Bob’s” house.

Don't be so complacient "Bob"..... Even your shit has value to a hacker and could be taken for about any reason you can put a name to - You fit a certain demographic type, the hacker is just bored that day, maybe looking for an E-Z target to help pad their quota count of the day..... Hacker's rage and you just wandered into the line of fire with a simple, innocent mouse click over at you favorite pron site......Who really knows?

TBH all they need is just one to do it and if they've got it well.... Guess what?

Yep - They DID take it from you Bob and you "took it" from them too!!

SamirD · Apr 16, 2023

bobbybluz said:
I'm over 70. I still pay for most things by check, write actual snail mail letters and make plenty of telephone calls. Growing up around professional criminals made me very aware of security related things.

Yep, there's a lot of 'if it isn't broken, don't try to fix it' that the young kids with their stupidly named companies and 'white board' ideas need to learn.

My mom and dad once met and attended a security seminar by the guy who was the subject of the movie 'Catch Me If You Can'. The stuff they said he told them about how to avoid scams was mindblowing at the time--stuff you would never think of and yet was dead obvious.

R0H1T said:
Anything that's connected to the internet is at risk, if you really have something that important just keep it off the net.

Yep--'the only winning move is not to play'

Ferrum Master said:
Remembers investing building my own OMV based home DIY NAS.

Reads this and thinks it pays off being paranoid.

It always helps to error on the side of caution.

A Computer Guy said:
For really important stuff I go out into the woods with ski masks, night vision goggles, and a verity of musical tambourines for tapping out encrypted Morse code.

Funniest thing I've read this week!

MentalAcetylide said:
People want everything accessible 24/7 from everywhere, so this is what we get. Until there's an arm long enough to reach out & throttle the perpetrators, this is just going to keep happening. Its a lot easier for them to find exploits than it is to design a system with no exploits when it comes to data & computer networks.

And these are facts that people really need to digest when determining what they think is 'safe'. The last statement about how it is easier to find exploits than design a system with no exploits should really stand out.

ymbaja said:
While I agree the difference is centralized data is a huge target for attackers vs some random drive at “Bob’s” house.

Yep, and the bigger the payoff, the greater will be the effort. It's why bigger companies usually get in the crosshairs before smaller ones do.

R-T-B · Apr 16, 2023

There are ways to setup a truly secure cloud, but due to legal compliance issues, no big provider really uses them.

That makes all this possible.

lemonadesoda · Apr 16, 2023

Everybody, and I mean EVERYBODY, who is a member of this forum, has the competence to set up a home or SOHO NAS. And give it no access to/from the internet. If they want remote features, then it is equally easy to set up an air-gapped backup of said NAS.

The only thing holding most people back is cantbebotheredness. A terrible illness plaguing the lazy.

Dare I say it? I've got a foot in both camps. But this article, thread and my comment, will hopefully kick me up the backside to get that new server and NAS installed that was on my to-do list since December?

AusWolf · Apr 16, 2023

lemonadesoda said:
Everybody, and I mean EVERYBODY, who is a member of this forum, has the competence to set up a home or SOHO NAS. And give it no access to/from the internet. If they want remote features, then it is equally easy to set up an air-gapped backup of said NAS.

The only thing holding most people back is cantbebotheredness. A terrible illness plaguing the lazy.

Dare I say it? I've got a foot in both camps. But this article, thread and my comment, will hopefully kick me up the backside to get that new server and NAS installed that was on my to-do list since December?

I don't trust home servers, either. When I need data portability, USB sticks and external hard drives are fastest and most secure way.

lemonadesoda · Apr 16, 2023

AusWolf said:
I don't trust home servers,

What don't you trust? The server/NAS or the firewall between it and your WAN?

But I do agree, for "planned jobs" having a USB/external HDD is the fastest, simplest, and safest way to go

trsttte · Apr 16, 2023

lemonadesoda said:
The only thing holding most people back is cantbebotheredness. A terrible illness plaguing the lazy.

There's another reason, money. It's cheaper to get bad solutions like this WD cloud even if not by much.

R-T-B · Apr 17, 2023

lemonadesoda said:
Everybody, and I mean EVERYBODY, who is a member of this forum, has the competence to set up a home or SOHO NAS.

You have much more confidence than me.

AusWolf · Apr 17, 2023

lemonadesoda said:
What don't you trust? The server/NAS or the firewall between it and your WAN?

The firewall. If a device is connected to the internet, it can be hacked.

Steevo · Apr 17, 2023

My cloud backup is a 4TB drive in a safe, and burned DVD copies of extremely important things, and some online files.

lemonadesoda · Apr 17, 2023

R-T-B said:
You have much more confidence than me.

I have a little hope and faith. With experience you learn that most people don't have any competence whatsoever and are good for nothing but bread, circus, and enslavement. But that's a different story.

Let's rephrase it: with a how-to, most people on this forum should be able to follow the instructions. Whether they will choose to invest their time and do it properly is another matter...

System Name	Dumbass
Processor	AMD Ryzen 7800X3D
Motherboard	ASUS TUF gaming B650
Cooling	Artic Liquid Freezer 2 - 420mm
Memory	G.Skill Sniper 32gb DDR5 6000
Video Card(s)	GreenTeam 4070 ti super 16gb
Storage	Samsung EVO 500gb & 1Tb, 2tb HDD, 500gb WD Black
Display(s)	1x Nixeus NX_EDG27, 2x Dell S2440L (16:9)
Case	Phanteks Enthoo Primo w/8 140mm SP Fans
Audio Device(s)	onboard (realtek?) - SPKRS:Logitech Z623 200w 2.1
Power Supply	Corsair HX1000i
Mouse	Steeseries Esports Wireless
Keyboard	Corsair K100
Software	windows 10 H
Benchmark Scores	https://i.imgur.com/aoz3vWY.jpg?2

System Name	Rainbow Puke Machine Reborn :D
Processor	Intel Core i5-11400 (MCE enabled, PL removed)
Motherboard	ASUS STRIX B560-G GAMING WIFI mATX
Cooling	Corsair H60i RGB PRO XT AIO + HD120 RGB (x3) + SP120 RGB PRO (x3) + Commander PRO
Memory	Corsair Vengeance RGB RT 2 x 8GB 3200MHz DDR4 C16
Video Card(s)	ASRock ARC B580 Challenger 12GB (Stock)
Storage	Corsair MP600 PRO 1TB M.2 PCIe Gen4 x4 SSD
Display(s)	LG 29WK600-W Ultrawide 1080p IPS Monitor (primary display)
Case	Corsair iCUE 220T RGB Airflow (White) w/Lighting Node CORE + Lighting Node PRO RGB LED Strips (x4).
Audio Device(s)	ASUS ROG Supreme FX S1220A w/ Savitech SV3H712 AMP + Sonic Studio 3 suite
Power Supply	Corsair RM750x 80 Plus Gold Fully Modular
Mouse	Corsair M65 RGB FPS Gaming (White)
Keyboard	Corsair K60 PRO RGB Mechanical w/ Cherry VIOLA Switches
Software	Tweaked Windows 11 Professional x64 (Update 24H2) OS

System Name	My second and third PCs are Intel + Nvidia
Processor	AMD Ryzen 7 7800X3D @ 45 W TDP Eco Mode
Motherboard	MSi Pro B650M-A Wifi
Cooling	Noctua NH-U9S chromax.black push+pull
Memory	2x 24 GB Corsair Vengeance DDR5-6000 CL36
Video Card(s)	PowerColor Reaper Radeon RX 9070 XT
Storage	2 TB Corsair MP600 GS, 4 TB Seagate Barracuda
Display(s)	Dell S3422DWG 34" 1440 UW 144 Hz
Case	Corsair Crystal 280X
Audio Device(s)	Logitech Z333 2.1 speakers, AKG Y50 headphones
Power Supply	750 W Seasonic Prime GX
Mouse	Logitech MX Master 2S
Keyboard	Logitech G413 SE
Software	Bazzite (Fedora Linux) KDE Plasma

System Name	"The black one in the dining room" / "The Latest One"
Processor	Intel Xeon E5 2699 V4 22c/44t / i9 14900K @6GHz
Motherboard	Asus X99 Deluxe / ASRock Z790 Taichi
Cooling	Arctic Liquid Freezer II 240 w/4 Silverstone FM121 fans / Arctic LF II 280 w 4 Silverstone FHP141's
Memory	64GB G.Skill Ripjaws V DDR4 2400 (8x8) / 96GB G.Skill Trident Z5 DDR5 6800
Video Card(s)	EVGA RTX 1080 Ti FTW3 / Asus Tuff OC 4090 24GB
Storage	Samsung 970 Evo Plus, 1TB Samsung 860, 4 Western Digital 2TB / 2TB Solidigm P44 Pro & more.
Display(s)	43" Samsung 8000 series 4K / 65" Hisense U8N 4K
Case	Modded Corsair Carbide 500R / Modded Corsair Graphite 780 T
Audio Device(s)	Asus Xonar Essence STX/ Asus Xonar Essence STX II
Power Supply	Corsair AX1200i / Seasonic Prime GX-1300
Mouse	Logitech Performance MX, Microsoft Intellimouse Explorer 3.0
Keyboard	Logitech K750 Solar, Logitech K800
Software	Win 10 IoT Enterprise LTSC 2021 / Win 11 IoT Enterprise IoT LTSC 24H2
Benchmark Scores	https://www.passmark.com/baselines/V11/display.php?id=202122048229 (before upgrades)

Processor	Ryzen 2600
Motherboard	X470 Tachi Ultimate
Cooling	AM3+ Wraith CPU cooler
Memory	C.R.S.
Video Card(s)	GTX 970
Software	Linux Peppermint 10
Benchmark Scores	Never high enough

System Name	Pioneer
Processor	Ryzen 9 9950X
Motherboard	MSI MAG X670E Tomahawk Wifi
Cooling	Noctua NH-D15 + A whole lotta Sunon, Phanteks and Corsair Maglev blower fans...
Memory	64GB (2x 32GB) G.Skill Flare X5 @ DDR5-6200(Running 1T no GDM)
Video Card(s)	PNY RTX 5080 OC
Storage	Intel 5800X Optane 800GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs, 1x 2TB Seagate Exos 3.5"
Display(s)	55" Hisense 55U8N 4K FALD Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W 80Plus Titanium PSU
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64 / Windows 11 Enterprise (yes it's legit)

System Name	ICE-QUAD // ICE-CRUNCH
Processor	Q6600 // 2x Xeon 5472
Memory	2GB DDR // 8GB FB-DIMM
Video Card(s)	HD3850-AGP // FireGL 3400
Display(s)	2 x Samsung 204Ts = 3200x1200
Audio Device(s)	Audigy 2
Software	Windows Server 2003 R2 as a Workstation now migrated to W10 with regrets.

System Name	Compy 386
Processor	7800X3D
Motherboard	Asus
Cooling	Air for now.....
Memory	64 GB DDR5 6400Mhz
Video Card(s)	7900XTX 310 Merc
Storage	Samsung 990 2TB, 2 SP 2TB SSDs, 24TB Enterprise drives
Display(s)	55" Samsung 4K HDR
Audio Device(s)	ATI HDMI
Mouse	Logitech MX518
Keyboard	Razer
Software	A lot.
Benchmark Scores	Its fast. Enough.