Your Fly Is Open

Netmenaces and other Internet Stupidity

Ubiquiti Device? Patch Now...

If you have any Ubiquiti devices that aren’t running at the most current patch level, if those devices are reachable from the Internet, you should patch them IMMEDIATELY. According to this thread on Ubiquiti’s forum site, there is a worm exploiting unpatched AirOS and other devices (I’ve seen at least one EdgeOS device, but I can’t yet confirm that it’s part of the same issue…). I can, however, confirm that over the past 24 hours, I’ve seen several Ubiquiti devices hitting my SSH honeypots.

-TL
Tom Liston
Consultant - Cyber Network Defense
DarkMatter, LLC
Twitter: @tliston
May 15, 2016