Western Digital Asks 'My Book Live' Device Owners to Unplug After Reports of Remotely Wiped Drives

Western Digital is advising owners of its My Book Live storage drives to disconnect them from the internet until further notice, following reports from around the world that some devices have been compromised and wiped clean by malicious software.

western digital my book live
The WD My Book Live is the company's network-attached storage device with the book-style design that can stand upright on a desk. The drive is typically connected to computers via USB and connects to a local network via ethernet. Meanwhile, the WD My Book Live app lets users access their stored files remotely through Western Digital's cloud servers.

As reported by BleepingComputer, My Book Live and Live Duo device owners on Thursday began flooding Western Digital's support forums with reports that all of their files had been mysteriously deleted and that they could no longer access the device via the offical app or a browser.

"I have a WD My Book live connected to my home LAN that's worked fine for years," wrote the first poster in a now-long thread. "I have just found that somehow all the data on it is gone today, while the directories seems there but empty. Previously the 2T volume was almost full but now it shows full capacity."

When they attempted to log in using the drive's web dashboard, the drive told them they had an invalid password. Many other owners have also confirmed that their device has been hit with the same issue. "All my data is gone too," another user said. "I am totally screwed without that data... years of it."

Following further reports, a pattern has gradually emerged in shared device logs that points to a remote command initiating a factory reset on affected devices beginning at around 3:00 p.m. on Thursday and continuing throughout the night.

Western Digital has advised customers in a new support notice to disconnect their My Book Live devices while the company investigates the destructive attacks. The company has since told BleepingComputer they are actively investigating the attacks but do not believe it was a compromise of their servers.

"Western Digital has determined that some My Book Live devices are being compromised by malicious software. In some cases, this compromise has led to a factory reset that appears to erase all data on the device. The My Book Live device received its final firmware update in 2015. We understand that our customers' data is very important. At this time, we recommend you disconnect your My Book Live from the Internet to protect your data on the device. We are actively investigating and we will provide updates to this thread when they are available."

If the company is correct in saying its servers haven't been hacked, it's unclear how so many My Book Live accounts could be compromised at or around the same time. We've asked for more information from Western Digital regarding the matter and will post an update to this story if we hear anything back, but the advice for device owners for now is clear: Disconnect your My Book Live.

Top Rated Comments

haruhiko Avatar
14 months ago
One should either: 1) put your files locally and keep the drive offline or 2) put them in a trustworthy cloud based storage system (iCloud Drive, Google Drive etc.)

The victims unfortunately chose the worst of both worlds: a single local copy with access to internet which supports remote deletion of all files.

The fact that WD gave up their old products and hasn’t issued any security updates since 2015 while retaining the remote wipe function is beyond irresponsible.
Score: 24 Votes (Like | Disagree)
deckard666 Avatar
14 months ago
Remote and local folks.....always
Score: 21 Votes (Like | Disagree)
JSL1 Avatar
14 months ago
Poor security by WD to allow this to happen and to allow remote wipes.
Score: 12 Votes (Like | Disagree)
elvisimprsntr Avatar
14 months ago
Hard lessons learned:
1. Never expose NAS to WAN or any remote access cloud service.
2. Need 3-2-1 backup strategy.
3. Replace EOL devices/software.

Even though I did not fall victim to recent QNAP QTS Qlocker ransomware since I don't expose my NAS devices to a WAN, I got fed up with constant QTS security patches for hardcoded credentials and vulnerabilities, and installed TrueNAS CORE ('https://www.truenas.com/truenas-core/') on my QNAP TS-453A and TS-253A. Works better and faster than QTS!



Attachment Image
Score: 9 Votes (Like | Disagree)
W2u7Yw4HaD Avatar
14 months ago
Unless their data is wholly in the cloud also and can be undeleted, this isn't a wise thing to connect to the cloud as your only offline backup source..
Score: 8 Votes (Like | Disagree)
CoastalMaineBird Avatar
14 months ago
all the data on it is gone today, while the directories seems there but empty.
...
this compromise has led to a factory reset that appears to erase all data on the device.

I don't think the "factory reset" would leave all the directories there.
Score: 6 Votes (Like | Disagree)

Related Stories

shazam concerts

Apple's Shazam App Gains Concert Discovery Feature

Tuesday March 22, 2022 9:25 am PDT by
Shazam, Apple's music discovery app and service, today gained a new suite of concert features that are designed to make it easier for users to locate and explore upcoming live music shows. When Shazaming a song, searching for it in the Shazam app, or looking for it on the Shazam website, users will now see concert information and details on tickets available for upcoming shows located...
apple security banner

Apple Reportedly Notified Some U.S. State Department Employees They May Have Been Targeted by NSO Group Spyware

Friday December 3, 2021 8:56 am PST by
Apple has notified at least nine U.S. Department of State employees that they may have been targeted by state-sponsored spyware created by Israeli company NSO Group, according to a Reuters report citing four people familiar with the matter. A spokesperson for NSO Group told Reuters that it will investigate and take legal action against customers using its tools illegally if necessary."If our ...
24 inch imac and macbook monterey

Users Report External Monitor Issues After Updating to macOS Monterey 12.3

Thursday March 24, 2022 3:43 am PDT by
Following the latest macOS Monterey 12.3 update, users are reporting several problems when using external monitors, ranging from Macs not detecting displays at all to inaccurate screen output, according to posts on the Apple Support and MacRumors forums. In the ten days since the update became available to the public, users have already reported issues with the update bricking Macs that...
nfl

Apple 'Ready to Spend Billions' on Live Sports Content Over Next Four Years

Friday January 14, 2022 3:52 am PST by
Apple is on an "aggressive hunt" for potential deals that would allow it to broadcast live sports content on its TV+ streaming service as part of a wider effort to boost subscription numbers, according to a new report from investment firm Wedbush. In a new investor note, seen by MacRumors, Wedbush analyst Dan Ives said he regards Apple's decision not to acquire a movie studio yet as a clear...
foundation season 2

Apple TV+ Shares First Look at 'Foundation' Season 2 With New Cast Member Reveal

Tuesday February 1, 2022 9:58 am PST by
Apple today shared a first look at the second season of popular science fiction show "Foundation," which is based on Isaac Asimov's classic book series. The show focuses on four crucial individuals as they transcend space and time to overcome deadly crises, shifting loyalties, and complicated relationships that will determine the fate of humanity. "Foundation" was renewed for a second...
apple tv plus banner

Michael Douglas to Star as Benjamin Franklin in Upcoming Apple TV+ Series

Monday February 28, 2022 1:16 pm PST by
Apple today announced a new Benjamin Franklin show that is set to star award winning actor Michael Douglas as the titular character. The limited drama series is based on the book "A Great Improvisation: Franklin, France, and the Birth of America" by Stacy Schiff. According to Apple's description of the as-of-yet untitled TV series, it will explore the "thrilling story of one of the greatest...
m1 chip ssd

Apple SSD Supplier Hit With Contamination Disaster, Flash Storage Prices Expected to Spike

Friday February 11, 2022 5:38 am PST by
SSD prices are likely to increase globally due to contamination issues at Western Digital and Kioxia's NAND production facilities, and Apple devices may be affected (via TrendForce). The M1 MacBook Air's SSD modules Western Digital says that it has lost 6.5 exabytes worth of BiCS 3D NAND flash storage due to use of contaminated materials at two of its plants in Japan in January. The...
the changeling tv show lakeith

Drama Series 'The Changeling' Coming to Apple TV+

Wednesday August 25, 2021 9:24 am PDT by
Apple today announced that it has picked up a new drama series called "The Changeling," which is based on the best-selling Victor LaValle book of the same name. LaKeith Stanfield, known for "Atlanta" and "Judas and the Black Messiah," is set to star in the show. "The Changeling" is described as a "fairytale for grown-ups" that's part horror story, part parenthood fable, and a "perilous...

Popular Stories

top stories 2jul2022

Top Stories: M2 MacBook Air Release Date, New HomePod Rumor, and More

Saturday July 2, 2022 6:00 am PDT by
The M2 MacBook Pro has started making its way into customers' hands and we're learning more about how it performs in a variety of situations, but all eyes are really on the upcoming M2 MacBook Air which has seen a complete redesign and should be arriving in a couple of weeks. Other top stories this week included a host of product rumors including additional M2 and even M3 Macs, an updated...
Mac Studio IO

Apple Begins Selling Refurbished Mac Studio Models

Thursday June 30, 2022 7:42 pm PDT by
Apple today began selling refurbished Mac Studio models for the first time in the United States, Canada, and select European countries, such as Belgium, Germany, Ireland, Spain, Switzerland, the Netherlands, and the United Kingdom. In the United States, two refurbished Mac Studio configurations are currently available, including one with the M1 Max chip (10-core CPU and 24-core GPU) for...
airpods pro 2 1

AirPods Pro 2 No Longer Expected to Feature Built-In Heart Rate or Body Temperature Sensor

Sunday July 3, 2022 8:07 pm PDT by
While past rumors have indicated the upcoming second-generation AirPods Pro will feature a built-in heart rate and body temperature sensor, Bloomberg's Mark Gurman has cast doubt on those rumors turning out to be true, saying instead such a feature is unlikely to come anytime soon. "Over the past few months, there have been rumors about this year's model gaining the ability to determine a...
Apple Watch 8 Unreleased Feature Thumb

Apple Watch Series 8 Model Rumored to Feature 5% Larger Display

Monday July 4, 2022 5:50 am PDT by
Apple is working on an Apple Watch Series 8 model with a larger display, according to DSCC's Ross Young and Haitong International Securities's Jeff Pu. In October last year, Young suggested that the Apple Watch Series 8 could come in three display sizes. Now, responding to a query about the rumor on Twitter, Young claims that the additional display size joining the Apple Watch lineup will be ...
macbook air m2

Exclusive: Apple Plans to Launch MacBook Air With M2 Chip on July 15

Wednesday June 29, 2022 5:23 pm PDT by
The redesigned MacBook Air with the all-new M2 Apple silicon chip will be available for customers starting Friday, July 15, MacRumors has learned from a retail source. The new MacBook Air was announced and previewed during WWDC earlier this month, with Apple stating availability will begin in July. The MacBook Air features a redesigned body that is thinner and lighter than the previous...