Malware wipes data on Western Digital devices

The company stated that hackers used a vulnerability (CVE-2021-35941) to remotely wipe data from live disks.

Western Digital My Book Live owners around the globe reported a total loss of data on their devices.

The company stated that hackers used a vulnerability (CVE-2021-35941) to remotely wipe data from live disks.

Censys, a security firm, and Ars Technica , on the other hand, believe hackers used an undocumented vulnerability in a system_factory_restore file. According to their investigations, Western Digital had commented out a part of the script that would have required a password before executing a factory reset.

A security expert told Ars Technica that the attackers would have to know the format of the script that triggered the reset to exploit the vulnerability. The hack puts Western Digital in a bad light, as if they they changed the script on purpose.

Some believe that the attackers originally used the CVE-2021-35941 vulnerability to turn the devices into botnets and a rival group used the system_factory_restore flaw to wipe the data from the disks.

Ars Technica

Hackers exploited 0-day, not 2018 bug, to mass-wipe My Book Live devices [Updated]

Western Digital removed code that would have prevented the wiping of petabytes of data.

Read More
BleepingComputer

WD My Book NAS devices are being remotely wiped clean worldwide

Western Digital My Book Live NAS owners worldwide found that their devices have been mysteriously factory reset and all of their files deleted.

Read More
MarketWatch

Western Digital Corp. stock outperforms market on strong trading day

Shares of Western Digital Corp. inched 0.94% higher to $70.65 Tuesday, on what proved to be an all-around favorable trading session for the stock market,…

Read More
Photo of author

Cray Zephyr

Cray has a major in philosophy and likes to keep things simple. He tries to keep his opinions to himself but will never shy out of a discussion, except with chickens. A chicken always wins.