A second exploit has emerged in the sad WD My Book Live data deletion saga

-
The WD My Book Live and My Book Live Duo | Image: WD

It looks like there may have been more than one exploit used to cause the mass deletion of data from WD My Book Live NASes last week, according to a report from Ars Technica. When news broke that people were finding that their data was missing, some (including WD itself), pointed to a known exploit from 2018, which allowed for root access of the device. However, it appears as though there’s more going on than was initially suspected.

If you have one of these devices, you should unplug it from the internet before reading any further — it’s clear at this point that your data is at risk if the device is online.

The second exploit, reported by Ars Technica, doesn’t give an attacker full control over the device like the other exploit. It...

Continue reading…



source https://www.theverge.com/2021/6/29/22555959/wd-my-book-live-second-exploit-authentication-factory-reset-without-password-root-control

Comments

Post a Comment

Popular posts from this blog

In a world first, China lands a spacecraft gently on the Moon’s far side

-
Image
This evening, China became the first nation to land a spacecraft gently on the far side of the Moon, according to China Global Television Network America . A Chinese robotic lander and rover, which launched from China in early December, descended into a crater on the side of the Moon that’s always facing away from Earth. The touchdown marks a significant technological feat for the country, and puts China in an elite category of spaceflight achievement all its own. The landing is part of China’s Chang’e-4 mission — one of a series of planned missions to explore the lunar surface. Prior to this program, China sent a lander and a rover to the Moon, making it the third country to ever softly land on the lunar surface. That lander, part of the... Continue reading… source https://www.theverge.com/2019/1/2/18165807/china-change-4-mission-lunar-lander-rover-moon-farside
Read more

Snap suspends two anonymous messaging apps after cyberbullying lawsuit

-
Image
Images from Yolo’s now-removed App Store listing. | Image: Yolo Technologies Snap will suspend two anonymous messaging integrations from Snapchat after a lawsuit sought to hold them responsible for a teenager’s death, the Los Angeles Times reports . The lawsuit was filed on Monday by Kristin Bride, the mother of a teenager who died by suicide in June after being bullied on the two apps. “In light of the serious allegations raised by the lawsuit, and out of an abundance of caution for the safety of the Snapchat community, we are suspending both Yolo and LMK’s Snap Kit integrations while we investigate these claims,” a spokesperson for Snap said in a statement. Representatives for the two apps, Yolo and LMK, did not immediately respond to The Verge ’s request for comment. “We are suspending both Yolo and LMK’s Snap... Continue reading… source https://www.theverge.com/2021/5/12/22431883/snap-inc-snapchat-anonymous-messaging-qa-lawsuit-teenager-death
Read more