Rich Freeman via plug on 12 Jan 2021 10:52:24 -0800


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Ubiquiti breach


On Tue, Jan 12, 2021 at 1:46 PM JP Vossen via plug
<plug@lists.phillylinux.org> wrote:
>
> https://krebsonsecurity.com/2021/01/ubiquiti-change-your-password-enable-2fa/ says:
>         ... "a third-party cloud provider may have exposed customer account information and credentials used to remotely manage Ubiquiti gear." ...
>         ... "The warning from Ubiquiti carries particular significance because the company has made it fairly difficult for customers using the latest Ubiquiti firmware to interact with their devices without first authenticating through the company’s cloud-based systems." ...
>

That website seems a little vague on the details, but based on the
comments this might be related to UniFi protect, which I have never
used and can't speak to.  (The new UDM provides both Protect and a
UniFi controller.)

That reminds me of some questions I had about zoneminder, which I'll
post separately to the list...

-- 
Rich
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug