Western Digital Drives Data Wiped by Hackers

Zero-Day Vulnerability for My Book Live Users

The latest information from Western Digital (the Hard Disk Manufacturing Data storage company) is that a zero-day vulnerability has been exploited by hackers who can remotely wipe its customers’ My Book Live drives. Just in case you are wondering what a zero-day vulnerability is, it’s a vulnerability in a system or device that has been disclosed but is not yet patched. An exploit that attacks a zero-day vulnerability is called a zero-day exploit.

This apparently was discovered last week (end of June 2021) when owners of the said above device discovered a drive that had been working fine and had data stored on it was now “suddenly blank”, with “all the data gone”. In some cases, the directories are still there but the files in those directories (folders) have been erased. It would appear to some victims that the devices had been “factory reset” as well as passwords being reset and changed from the factory default.

Western Difital Response

Western Digital soon after responded by publishing an advisory about the incident warning its My Book Live users of the device, to disconnect their devices from the Internet and offering support services.

They stated, “for customers who have lost data as a result of these attacks, Western Digital will provide data recovery services”. They also added the following, “for customers who have the My Book Live devices will be also be offered a trade-in program to upgrade to a supported “My Cloud Device”.

The way My Book Live devices worked was that they sat behind a firewall and provided remote access through a My Book Live cloud service.

Censys, a Cloud security company, scanned the Internet shortly afterward and found that Western Digital customers had around 55,000 My Book Live device certificates with around 1200 here in Australia.

My Book Live Unsupported Since 2015

The Western Digital My Book Live device first went on sale in 2010 with the last firmware update in 2015, since then they have been basically unsupported. They first presented an issue when in 2018 a vulnerability was reported by Wizcase when they discovered a remote execution issue which “lets anyone run commands on the device as root” – root being a user with administrative rights – meaning they can run or do anything. Western Digital at the time stated that the devices “were no longer covered under our device software support lifecycle”, as they had been discontinued. Mistakes by Western Digital in firmware updates then allowed a simple POST request to the My Book Live device that it should trigger a factory restore process in this latest hack.

There has been conjecture that the 2018 vulnerability had already been exploited by bad actors and such was the extent that Censys estimates that 13000 units had already been compromised around that time. It may be that one lot of bad actors were “fighting” another lot of bad actors and so to stop them they decided the best way was to wipe all their My Book Live units. Maybe so, perhaps we will never know.

If you are affected by this latest hack on your Western Digital My Book Live then please contact Western Digital as soon as possible so that they can possibly assist you in your data recovery.

This article was provided to you by Affordable Computer Repairs and Service in Brisbane.

Hugely happy with the service and attention provided to me over a broken laptop issue I had. Kept me up-to-date and was knowledgeable about the possible problems and fixes. Would recommend to anyone in the area or from further afield.

Bryn Jenkins

16/04/2024

Could not recommend any higher! Were more than happy to take time and talk out the issue with me at length, as well as being super affordable. I'd give more stars if i could! Thanks Mark!

Bryce Aird

20/01/2024

Fast, friendly and informative. Fixed a very tricky hard drive issue for me that saved me hours of time. Kept me informed of progress the whole time. Highly recommend Mark's services

Anthony Williams

24/11/2023

Great service and follow up support. Definitely recommend this business

Matt Cobby

07/09/2023

David was very helpful in getting my 2x printers working. I'll definitely ask for David's services in the future. Thanks David!

cleo moloney

27/06/2023

Thank you Mark for your honest appraisal and the time you took to advise me - much appreciated

Sonia “SDESIGN”

10/05/2023

My mother's computer froze & she could not use it at all. A possible virus? After a few potentially exorbitant "quotes" from nerdy geeky guys, I called Mark at Affordable Computer Repairs. He explained the possible problem and sent David out that afternoon. 1hr later my mothers computer was up and running again. Wow, that's service. I later received a follow up call from Mark explaining what David had done & reassuring us that her computer was free from virus & how to stop them in the future. Again fantastic service. Thanks to Mark & David, will definitely recommend your service to others.

Chicken Dave

18/02/2023

I have an old (2008) Acer with Vista that I never had any problems with till it recently suddenly shut down, & on reboot I couldn’t get back into Windows. Nor could I get past a black screen with an installation disk. I had a couple of reasons I was using it, one being to run a you beaut printer (that craps all over the new ones) that won’t run on Win 10, but I did expect I’d have to bite the bullet & ditch both. I had already copied everything I wanted off the laptop but had some new current files from an attached microscope I’d not yet copied over. I spoke with a couple of places that said bring it in & I’ll take a look for $110 per hour but after reading the reviews for Affordable Computer Repairs I thought I’d ring them for advice. Having had considerable experience with computers in my time I had a pretty good idea of what was what. Yep, both laptop & printer are candidates for the bin (⚰️RIP my old faithfuls ????) but Mark gave me options to possibly access the laptop through an external monitor or copy the files I want off the hard drive. It was really nice to get the kind of ‘altruistic’ service of days gone by rather than the ‘bring it in & spend money’ mentality of today. Thanks, Mark. If I have any problems with my current devices I know who I’ll call. ????

Sae Wott

10/02/2023

Mark is totally reliable and upfront. He was quick to respond and answer all my questions. He was very clear and honest about my computer. He was so reasonable in dealing with me and my dud of a computer. I highly recommend him.

Colleen Light

11/11/2022

Affordable Computer Repairs and Service Brisbane

Western Digital Drives Data Wiped by Hackers

Zero-Day Vulnerability for My Book Live Users

Western Difital Response

My Book Live Unsupported Since 2015

Best Computer Repairs in Brisbane