Author Topic: Ubiquiti Breach  (Read 1209 times)

0 Members and 1 Guest are viewing this topic.

Offline madires

  • Super Contributor
  • ***
  • Posts: 6160
  • Country: de
  • A qualified hobbyist ;)
Ubiquiti Breach
« on: March 30, 2021, 08:32:49 pm »
Whistleblower: Ubiquiti Breach “Catastrophic“: https://krebsonsecurity.com/2021/03/whistleblower-ubiquiti-breach-catastrophic/

Change your PWs!
 

Offline PKTKS

  • Super Contributor
  • ***
  • Posts: 1180
  • Country: br
Re: Ubiquiti Breach
« Reply #1 on: March 31, 2021, 11:49:26 am »
It did not last very long to surface ...

Think fast..
- What should be the worst nightmare for a serious data center buz ?

... A SINGLE NODE OF CATASTROPHIC FAILURE ...

- What exactly a "CLOUD" is ?
... A SINGLE NODE OF CATASTROPHIC FAILURE ...

- you have no clue who controls and access it
- you have no real vision of how the thing is managed
- you have left your control to the hands of unknown others..

last question: Why people trust that cloud thihg ?

Why Ubiquiti and not MIMOSA Mikrotik Cambrium ... others..

Paul  :popcorn:


 

Offline madires

  • Super Contributor
  • ***
  • Posts: 6160
  • Country: de
  • A qualified hobbyist ;)
Re: Ubiquiti Breach
« Reply #2 on: March 31, 2021, 01:31:52 pm »
Someone screwed up the risk assessment. Cloud platforms are an attractive target, hack once and own millions of accounts or devices. However, the cloud isn't bad per se, but you need to know the pros and cons, and act accordingly. And even if you don't use the cloud you can create havoc for all your users, e.g by firmwares with hidden admin accounts. Some vendors are better, some are worse. They all have to face security issues from time to time. Some more often, some more rarely. No one is bulletproof.
 

Offline Halcyon

  • Global Moderator
  • *****
  • Posts: 4532
  • Country: au
Re: Ubiquiti Breach
« Reply #3 on: April 03, 2021, 08:00:59 am »
This breach was far from catastrophic, in fact, it had no impact at all to most customers. Unlike most IoT services, Ubiquiti allows you to use their products completely offline and independent of their cloud infrastructure. Even if you want to remotely manage your devices over a VPN, you still have that option.
 

Offline cdev

  • Super Contributor
  • ***
  • Posts: 6518
  • Country: 00
Re: Ubiquiti Breach
« Reply #4 on: July 18, 2021, 10:49:50 pm »
People use cloud services because they are lazy and often dont have any critical or valuable information to protect.

Many of them never even realized they could install and manage all those services themselves.

It did not last very long to surface ...

Think fast..
- What should be the worst nightmare for a serious data center buz ?

... A SINGLE NODE OF CATASTROPHIC FAILURE ...

- What exactly a "CLOUD" is ?
... A SINGLE NODE OF CATASTROPHIC FAILURE ...

- you have no clue who controls and access it
- you have no real vision of how the thing is managed
- you have left your control to the hands of unknown others..

last question: Why people trust that cloud thihg ?

Why Ubiquiti and not MIMOSA Mikrotik Cambrium ... others..

Paul  :popcorn:
"What the large print giveth, the small print taketh away."
 

Offline Mr. Scram

  • Super Contributor
  • ***
  • Posts: 9792
  • Country: 00
  • Display aficionado
Re: Ubiquiti Breach
« Reply #5 on: July 18, 2021, 11:12:01 pm »
People use cloud services because they are lazy and often dont have any critical or valuable information to protect.

Many of them never even realized they could install and manage all those services themselves.

Nothing to lose like various parts of various governments?
 


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf