News Categories

WD NAS drives: Another security flaw, but here's what you can do about it

By Vijay Anand - on 1 Aug 2021, 8:37pm

WD NAS drives: Another security flaw, but here's what you can do about it

Remember the zero-day exploits for WD My Book Live and My Book Live Duo products where users might find all their data wiped?

Unfortunately, WD and its users' woes don't just end there. There are more WD NAS users affected according to security researchers who found vulnerability present in devices still running My Cloud OS 3. This affects more NAS drives beyond those two models flagged out explicitly for the earlier exploit and WD has advised users to upgrade to newer NAS units.

The researchers pinned the issue down to a remote execution code flaw that's present in all WD NAS drives running MyCloud OS 3. This allows a malicious actor to update your NAS device's firmware with a modified firmware which grants them the ability to execute commands on the NAS for ill intents. Because they can update the firmware, there's also a chance these hackers could accidentally brick your NAS device through this process.

What are your options?

In short, if you're not using a WD NAS running the newer My Cloud OS 5, your device is vulnerable to potential attacks that may harm you or others. The frustrating part of all this is that even WD's SMB-class EX series is affected unless you have the latest editions.

Short of buying a modern WD NAS that supports My Cloud OS 5, there are a few settings you can toggle off to circumvent the problems faced by older WD NAS drives.

Since the issues string from remote access, restricting this is high on the list if you would like to keep utilising your current WD NAS drives.

  1. Disable the "Dashboard Cloud Access" within your NAS admin interface. This turns off remote dashboard access to the device, which is the primary entry point of abuse.

    A snapshot of the settings you need to take note of within the WD NAS' admin console for the affected devices.
  2. You can also go a step further to disable "Cloud Access" within your NAS admin interface, also found in the same location as the Dashboard Cloud Access. While this isn't mentioned by online reports, it's just good hygiene to keep your NAS for LAN-only usage, especially when there's a remote access vulnerability and WD isn't going to help update the OS on their older devices.
  3. If you can't update to My Cloud OS 5, it's highly likely that you're running an old WD NAS and you can disable "Auto Update" under "Firmware Update" section of the admin panel.

Source: KrebsonSecurity via The Verge, Comparitech, WD (1), (2)

Join HWZ's Telegram channel here and catch all the latest tech news!
Our articles may contain affiliate links. If you buy through these links, we may earn a small commission.