BLOWING THE WHISTLE —

Ubiquity breach post retracted

Report: Theft of crypto secrets could allow hackers to remotely log in to devices.

Dan Goodin - Mar 31, 2021 7:50 pm UTC

Stylized image of rows of padlocks. — Enlarge
Getty Images

The post published at this link has been retracted after the original source removed the article.

Promoted Comments

realwarder Ars Scholae Palatinae
jump to post
I would turn off the cloud remote access in the UDM-Pro in a heartbeat if you could. But you can't.

Update: It turns out you can. If you add a local admin user (ironically syncs online) and then in the top level, turn off Remote Access, the controller vanishes from the online portal and you can login as a local use. I guess changing the password again is then sensible.

It says you loose 'transfer owner' ability. No big loss.

1117 posts | registered 10/8/2009

Promoted Comments

realwarder Ars Scholae Palatinae
jump to post
I would turn off the cloud remote access in the UDM-Pro in a heartbeat if you could. But you can't.

Update: It turns out you can. If you add a local admin user (ironically syncs online) and then in the top level, turn off Remote Access, the controller vanishes from the online portal and you can login as a local use. I guess changing the password again is then sensible.

It says you loose 'transfer owner' ability. No big loss.

1117 posts | registered 10/8/2009

Dan Goodin Dan Goodin is Senior Security Editor at Ars Technica, where he oversees coverage of malware, computer espionage, botnets, hardware hacking, encryption, and passwords. In his spare time, he enjoys gardening, cooking, and following the independent music scene.

Channel Ars Technica

← Previous story Next story →

Promoted Comments

Promoted Comments

reader comments

Channel Ars Technica