Over 485,000 Ubiquiti devices vulnerable to new attack

Ubiquiti Networks is working on a fix for a newly discovered security issue affecting its devices that attackers have been exploiting since July last year.

The issue impacts over 485,000 devices, according to an internet scan conducted by US cyber-security firm Rapid7.

Mass-exploitation attacks were first spotted last week by Jim Troutman, co-founder of internet exchange point NNENIX (Northern New England Neutral Internet Exchange).

Troutman said threat actors have been using a service running on port 10,001 on Ubiquiti devices to carry out weak DDoS amplification attacks.

Read more…
Source: ZDNet