Ubiquiti has been h4x0r3d Ubiquiti tells customers to change passwords after security breach | ZDNet yall Ubiquiti has been h4x0r3d change passwords immediately disable all of da cloud functions optional dump ubiquiti
Even though I have Cloud with my Apple and .edu account, I never have used it. My digital redundancy lies in three 12tb external hdd’s. One stored inside my home, second stored in my unattached workshop, and the third at a burial cache at my BOL. I back up any digital files once a month, important files right away. All three hdd’s are stored in Pelican cases.
Not all Ubiuiti networking products are impacted. Unifi, which is their commercial best seller is definitely impacted. It's designed to be "plug and play" so everything depends on discovery protocols and cloud based management. I wouldn't touch it with a ten foot pole. This incident was inevitable and it won't be the last time. I'm using Ubiuiti Edge products and don't use any of their cloud based bullhockie so am not impacted. There is a semi Unifi like management tool, but it can be run as an internal application. I don't use it and frankly want to get to the point where I'm using the CLI instead of the GUI, so I'm going the opposite direction. Guess I'm more of a stick shift kind of guy. Still learnin... UniFi = black box believe button products therefore promiscuous due to network discovery protocols. Designed to make semi competent techs look good because of a slick GUI. Not as flexible or as configurable as Edge. Edge = traditional fully managed and configurable. Does not need network discovery protocols because the people who use these products already know what they have. Requires actual planning and engineering.
Just got a VPN, my first experience with one. Bit of a chore setting it up on Linux but it's done now on both desktop and dual-boot laptop. IMHO, anyone who trusts any "cloud" with critical information is unaware and naive. That's good for your doggie pictures maybe. Good point @RouteClearance about keeping a third HDD backup at the BOL. I currently have one on my Linux Hard Drive, a copy on an external Hard Drive. Figured if things get hairy and I have to bug out I can simply unplug the external hard drive and pack it up. Question is, will I remember to do that? You just found a hole in my bugout plan RC, thanks!
