Networking device manufacturer Ubiquiti has started emailing clients to warn them of a security incident that may have exposed customer data. Ubiquiti is a popular device manufacturer and is best known for its UniFi line of network products and a cloud management platform. The company began emailing customers to change their login credentials and enable two-factor-authentication (2FA) after an attacker gained access to their systems hosted by a third-party cloud provider. The email to their customers stated, “We recently became aware of unauthorized access to certain of our information technology systems hosted by a third-party cloud provider. We have no indication that there has been unauthorized activity with respect to any user’s account.” The company states that they are not aware of any maliciously accessed customer database but cannot rule out the possibility. All Ubiquiti UniFi device owners are required to create cloud accounts to be able to manage their devices instead of being able to manage their devices locally. The UniFi cloud services suffered an outage this weekend but it is unknown if the outage and the security incident are related.
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is