EEVblog Electronics Community Forum

Computing => Networking & Wireless => Topic started by: madires on March 30, 2021, 08:32:49 pm

Title: Ubiquiti Breach
Post by: madires on March 30, 2021, 08:32:49 pm
Whistleblower: Ubiquiti Breach “Catastrophic“: https://krebsonsecurity.com/2021/03/whistleblower-ubiquiti-breach-catastrophic/

Change your PWs!
Title: Re: Ubiquiti Breach
Post by: PKTKS on March 31, 2021, 11:49:26 am
It did not last very long to surface ...

Think fast..
- What should be the worst nightmare for a serious data center buz ?

... A SINGLE NODE OF CATASTROPHIC FAILURE ...

- What exactly a "CLOUD" is ?
... A SINGLE NODE OF CATASTROPHIC FAILURE ...

- you have no clue who controls and access it
- you have no real vision of how the thing is managed
- you have left your control to the hands of unknown others..

last question: Why people trust that cloud thihg ?

Why Ubiquiti and not MIMOSA Mikrotik Cambrium ... others..

Paul  :popcorn:


Title: Re: Ubiquiti Breach
Post by: madires on March 31, 2021, 01:31:52 pm
Someone screwed up the risk assessment. Cloud platforms are an attractive target, hack once and own millions of accounts or devices. However, the cloud isn't bad per se, but you need to know the pros and cons, and act accordingly. And even if you don't use the cloud you can create havoc for all your users, e.g by firmwares with hidden admin accounts. Some vendors are better, some are worse. They all have to face security issues from time to time. Some more often, some more rarely. No one is bulletproof.
Title: Re: Ubiquiti Breach
Post by: Halcyon on April 03, 2021, 08:00:59 am
This breach was far from catastrophic, in fact, it had no impact at all to most customers. Unlike most IoT services, Ubiquiti allows you to use their products completely offline and independent of their cloud infrastructure. Even if you want to remotely manage your devices over a VPN, you still have that option.
Title: Re: Ubiquiti Breach
Post by: cdev on July 18, 2021, 10:49:50 pm
People use cloud services because they are lazy and often dont have any critical or valuable information to protect.

Many of them never even realized they could install and manage all those services themselves.

It did not last very long to surface ...

Think fast..
- What should be the worst nightmare for a serious data center buz ?

... A SINGLE NODE OF CATASTROPHIC FAILURE ...

- What exactly a "CLOUD" is ?
... A SINGLE NODE OF CATASTROPHIC FAILURE ...

- you have no clue who controls and access it
- you have no real vision of how the thing is managed
- you have left your control to the hands of unknown others..

last question: Why people trust that cloud thihg ?

Why Ubiquiti and not MIMOSA Mikrotik Cambrium ... others..

Paul  :popcorn:
Title: Re: Ubiquiti Breach
Post by: Mr. Scram on July 18, 2021, 11:12:01 pm
People use cloud services because they are lazy and often dont have any critical or valuable information to protect.

Many of them never even realized they could install and manage all those services themselves.

Nothing to lose like various parts of various governments?