Ubiquiti breach puts countless cloud-based devices at risk of takeover

Here is the article - this looks really bad if you own a UDM Pro etc. there are steps to mitigate like deleting your profiles, enabling 2 factor authentication etc...

4 Likes

We had a fun chat about that in my afternoon InfoSec meeting. Not that we use Ubiquiti devices at work, but a lot of our engineers do at home.

Yeah... IF those claims are found to be true, it wouldn't surprise me if some people end up in jail for either securities fraud or privacy law violation. (yes, intentionally misreporting bad news to prevent stock impact is a securities fraud...)

That said, my Ubiquiti stuff at home has never been cloud connected, I did change my passwords after the 1/16/21 breach report, etc. Not losing sleep about it YET. :wink:

Although I may consider moving to a different brand at home at some point... Have been waiting for more 2.5Gb (or 5Gb) switches before making a change though.

6 Likes

Yeah @danabw talked me out of getting a UDMPro back in August - so stuck with an OpnSense box. Am running all my Ubiquiti stuff local as well.

Just checked my unifi account and changed pwd but no device profiles at all so am good... I might also be concerned if I had any CC's on file which I did not.

3 Likes

Thanks for posting this. I totally missed it in January. I only have an ER4 and do not have a cloud account but still good to know.

I have looked for 2.5g switches as well and haven’t found anything. I have a three aorus boards that could take advantage of it to my always on machine.

1 Like

Maybe whoever is behind the hack will release the source code and the community can start patching their own bugs..

2 Likes

Company says: "your data is safe with us"

My reply: "your checks in the mail"

Clearly hacking technology is leading security technology.

Here we go.

1 Like

Still love my Ubiquiti stuff -- glad I don't have a UDM, or UDM Pro though. :slight_smile: Other than perhaps Ruckus, I don't know of anything comparable in the high end consumer space. And I would be absolutely broke if I had to replace everything at this point!

S.

1 Like

Yes when the breech was first announced I immediately changed my cloud credentials but they still have a lot of data about folks accounts. I do self hosting of controllers in most installs and always setup local accounts for management.

I vowed never to go back to Cisco after they removed many features from their switches that are in the "free" tier and you had to go to a software contract.

1 Like

There are actually more and more these days. EnGenius makes a bunch of them, TP-Link has at least one, Netgear has some, etc. Now, they cost 3x-5x more than their non-2.5G model equivalents, though...

On a separate, but related note... I priced out replacing my Ubiquiti gear yesterday w/non-2.5G other brand equipment... To re-do my home network setup it would cost:
TP-Link Omada - $1300
EnGenius - $3255

Still working on some other pricing, mainly looking at solutions that have on-premise central management and no subscription - which limits choices somewhat in the price range I'm interested in.

4 Likes

Exactly! Be interested in what you find. Not planning on changing, but it never hurts to know what's out there. TBH, I probably wouldn't buy either of the brands you've found so far! Although historically, I've had good luck with TP-Link dumb switches.

Wow. The Omada seems like a 100% clone of Ubiquiti -- interesting. Actually both systems are interesting and very similar to Ubiquiti. The Sky-Key looks like a Gen 1 Cloudkey if I hold my head at an angle and Squint. LOL

S.

1 Like

Wow...talk about name-cloning. Sky-Key vs. Cloudkey. Next they need to release a line called "Alignifi" to compete w/"Unifi." :wink:

1 Like

Yes it really looks like they took the design language and functionality right off of Unifi's product suite. Just wondering if TP link is licensing Ubiquiti's technology assets?

Or maybe buying them at a "fire sale" when all is said and done..

If the interface/system is opensource then there should be no issue with TP-Link using it - as long as they don't violate any trademarks etc and depending on the particular os license honor the terms like agreeing to distribute the code with their devices.

I had the Omada but i found it as with most tp-link stuff to be nice, capable but not quite as integrated to a complete system as i wanted. hear me out, its not too bad, but it didn't feel quite as integrated as the ubiquiti stuff, to me it was too much management of individual components. i had it for a year or so before i left it, it wasn't bad and maybe i didn't invest enough time into it but i felt that the monitoring, alerting, reporting and system level integration of components was better on ubiquiti.

I ended up with the UDM-Pro largely based on trusted friends experiences. They did call out the cloud connectivity, but in general i treat all my local networks as if they are compromised and i secure individual devices assuming the network is breached.

but yeah, i'm not in love with the breach. And i would like to see a way to use the cloud gui for monitoring rather than state changes.

2 Likes

LOL. I don't think Ubiquiti actually created their admin dashboard in the first place. I imagine both Unifi and Omada just bought the template for their respective dashboards at a market place similar to this:

I imagine each company keeps their technology a closely guarded secret. The fact that TP-Link Omada most likely purchased an admin dashboard template from a third party provider, which is most likely what Ubiquiti Unifi did some years earlier, could hardly be construed as using any of "Ubiquiti's technology assets".

Anyway nobody really knows, but the theory above seems to be the most common going around the internet these days.

2 Likes