Western Digital reported today that a compromise in its network allowed an unauthorized person access to several corporate systems. The network security vulnerability was discovered last Sunday, March 26, according to a press release from the California-based manufacturer of computer drives and provider of data storage services.
The company is working with law enforcement officials to coordinate an investigation in its early stages. Western Digital states in the disclosure that after learning of the event, the company “executed incident response efforts and launched an investigation with the assistance of leading outside security and forensic experts.”
The business assumes that the intruder had access to some firm data based on the evidence. The company is trying to determine the nature and extent of the data in question since, based on the investigation thus far, it believes the unauthorized party obtained some of it from its systems. – Westinghouse Digital.
The storage manufacturer has added extra security safeguards to protect its systems and operations after the attack. These actions could impact several Western Digital services. The event “has caused and may continue to disrupt elements of the Company’s business activities,” according to the corporation.
Users of Western Digital’s network-attached storage (NAS) service My Cloud have complained about access issues to their cloud-hosted media repositories since Sunday. A “503 Service Temporarily Unavailable” message is displayed while attempting to log into the service at the time of writing, including the Home version.
From the initial complaints of the outage, more than 24 hours have passed with no cloud, proxy, web, authentication, emails, or push alerts. The following items are mentioned as being affected by the problem on the My Cloud service status page: My Cloud, My Cloud Home, My Cloud Home Duo, My Cloud OS5, SanDisk ibi, and SanDisk Ixpand Wireless Charger.
Conclusion
Manufacturer of data storage devices Western Digital announced a “network security issue” involving illegal access to its systems on Monday. According to reports, the breach happened on March 26, 2023, giving an unidentified third party access to “a number of the company’s systems.” Western Digital announced that it had started incident response activities after learning about the intrusion and had engaged the expertise of forensic and cybersecurity specialists to carry out an investigation. Additionally, it added that the investigation is in its early stages and that it is collaborating with law enforcement agencies on the topic.
The business has shut down several of its services and stated that it is attempting to ascertain the kind and severity of the data accessed and that the threat actor may have stolen “some data from its systems.” The My Cloud status page indicates that the cloud, proxy, web, authentication, emails, and push notification services are down, although Western Digital could not specify which specific services are affected. Western Digital announced a service outage on April 2 that involved the products: My Cloud, My Cloud Home, My Cloud Home Duo, My Cloud OS5, SanDisk ibi, and SanDisk Ixpand Wireless Charger.
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.