Home / News / Western Digital ‘My Cloud’ Devices Have a Hardcoded Backdoor

Western Digital ‘My Cloud’ Devices Have a Hardcoded Backdoor

BrianFagioli stocks a file from BetaNews: Today, but any other safety blunder turns into publicized, and it’s in point of fact unhealthy. You see, many Western Digital MyCloud NAS drives have a hardcoded backdoor, which means any person can get admission to them — your information are in danger. It is not even exhausting to benefit from it — the username is “mydlinkBRionyg” and the password is “abc12345cba” (with out quotes). To make issues worse, it used to be disclosed to Western Digital six months in the past and the corporate did not anything. GulfTech Research and Development explains, “The triviality of exploiting this issues makes it very dangerous, and even wormable. Not only that, but users locked to a LAN are not safe either. An attacker could literally take over your WDMyCloud by just having you visit a website where an embedded iframe or img tag make a request to the vulnerable device using one of the many predictable default hostnames for the WDMyCloud such as ‘wdmycloud’ and ‘wdmycloudmirror’ etc.” The My Cloud Storage units suffering from this backdoor come with: MyCloud, MyCloudReplicate, My Cloud Gen 2, My Cloud PR2100, My Cloud PR4100, My Cloud EX2 Ultra, My Cloud EX2, My Cloud EX4, My Cloud EX2100, My Cloud EX4100, My Cloud DL2100, and My Cloud DL4100. Firmware 2.30.172 reportedly fixes the malicious program, so ensure your instrument is up to date earlier than reconnecting to the web.

About Aamir

Check Also

Kaleido: ConsenSys launches Ethereum blockchain-as-a-service on AWS

Binance on track to offer security tokens. Pilot commences 2018

“Today’s announcement marks a new chapter for Binance’s development.” Binance is ready to start paintings …