The favorite and preferred drive of this blogger for regular PC as well as NAS storage just lost a ton of credibility
An expert on information security, James Børsgey, reported about the software bookmark he had found at Western Digital in the middle of 2017. Six months later, without getting a clear reaction from the company, the researcher published information about the backdoor. The exploit lies in the service of Western Digital My Cloud – you can connect to any with the credentials mydlinkBRionyg and the password abc12345cba. After logging on, the attacker gets access to the shell and can perform absolutely any actions with the device, including deleting or copying any information present.
The backdoor will be present in a myriad of devices made by Western Digital, including the My Cloud Gen 2, My Cloud EX2, My Cloud EX2 Ultra, My Cloud PR2100, My Cloud PR4100, My Cloud EX4, My Cloud EX2100, My Cloud EX4100, My Cloud DL2100 and My Cloud DL4100.
All owners of these devices are recommended to immediately disconnect their devices from the network.