Western Digital My Book Live Devices Remotely Wiped By Malicious Software, But Who Is To Blame?
If you own a Western Digital My Book Live, unplug it from the internet as soon as possible. WD has reported that people have been waking up to find their My Book Live devices completed wiped of installed data due to malicious software performing a factory reset.
On June 23rd, WD Community Forum user sunpeak made a post explaining that he found that all his data is gone and the owner password for device management had been changed. At the time of writing, this thread has had over 15,800 views and over 177 responses, many of which echo similar issues. Sunpeak then further elaborated on his issue later in the thread, showing logs of what appears to be a factory restore script being run.
Moreover, a CVE with a 9.8 CVSS score is nothing to scoff at, so WD probably should have gone back and made an exception to the software support lifecycle. However, this is not what happened, and now the company is in something of a pickle where users are losing data with little recourse. Moreover, there are still My Book Live devices for sale on places like Amazon, so new customers could be getting into the issue in the future as well.
In any case, make what you will of Western Digital, but if you find your data is gone from a My Book Live device, remove it from the internet and unplug it, so none of the data is overwritten accidentally. Then through either a professional service like WeRecoverData.com or self-run software, you may be able to get some things back in due time, provided you can pay for this. Either way, let us know what you think of this debacle and leave any tips or ideas for other My Book Live users in the comments below.
(Former Western Digital HQ Image Courtesy Of @alwaysfaded)