A second exploit has emerged in the sad WD My Book Live data deletion saga
It looks like there may have been more than one exploit used to cause the mass deletion of data from WD My Book Live NASes last week, according to a report from Ars Technica. When news broke that people were finding that their data was missing, some (including WD itself), pointed to a known exploit from 2018, which allowed for root access of the device. However, it appears as though there’s more going on than was initially suspected.
The second exploit, reported by Ars Technica, doesn’t give an attacker full control over the device like the other exploit. It…