{"id":24933,"date":"2019-02-04T12:10:51","date_gmt":"2019-02-04T12:10:51","guid":{"rendered":"http:\/\/604898e4-aa81-4b68-9f55-ee51d4243cb5"},"modified":"2019-02-04T12:10:51","modified_gmt":"2019-02-04T12:10:51","slug":"over-485000-ubiquiti-devices-vulnerable-to-new-attack","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/","title":{"rendered":"Over 485,000 Ubiquiti devices vulnerable to new attack"},"content":{"rendered":"<p><span class=\"img aspect-set\"><img decoding=\"async\" src=\"https:\/\/zdnet1.cbsistatic.com\/hub\/i\/2019\/02\/04\/d88df698-8e3c-41ed-86d3-a4084ab17a55\/57b2d640fe271467aabb7b04148de644\/world-map-globe-ddos.png\" class=\"\" alt=\"World Map DDoS Cyber Globe\"\/><\/span><span class=\"credit\">Image: Citrix<\/span><\/p>\n<p>Ubiquiti Networks is working on a fix for a newly discovered security issue affecting its devices that attackers have been exploiting since July last year.<\/p>\n<div class=\"relatedContent alignRight\">\n<h3 class=\"heading\"><span class=\"int\">More security news<\/span><\/h3>\n<\/div>\n<p>The issue impacts over 485,000 devices, according to an internet scan conducted by US cyber-security firm Rapid7.<\/p>\n<p>Mass-exploitation attacks were first spotted last week by Jim Troutman, co-founder of internet exchange point NNENIX (Northern New England Neutral Internet Exchange).<\/p>\n<p>Troutman <a href=\"https:\/\/twitter.com\/troutman\/status\/1090212243197870081\" target=\"_blank\" rel=\"noopener noreferrer\">said<\/a> threat actors have been using a service running on port 10,001 on Ubiquiti devices to carry out weak DDoS amplification attacks.<\/p>\n<p>Attackers are sending small packets of 56 bytes to port 10,001 on Ubiquiti devices, which are reflecting and relaying the packets to a target&#8217;s IP address amplified to a size of 206 bytes (amplification factor of 3.67).<\/p>\n<p>The exploitation attempts are in their incipient stages, and attackers are still experimenting with the best way to carry out the attacks. There haven&#8217;t been any major outages caused by DDoS attacks carried out via this attack vector, industry insiders have told ZDNet.<\/p>\n<h3>Attacks happening on port 10,001<\/h3>\n<p>In a <a href=\"https:\/\/blog.rapid7.com\/2019\/02\/01\/ubiquiti-discovery-service-exposures\/\" target=\"_blank\" rel=\"noopener noreferrer\">security alert<\/a> published by Rapid7, senior security researcher Jon Hart explained that attackers are exploiting a &#8220;discovery service&#8221; running on port 10,001, which Ubiquiti Networks included in its devices so the company and internet service providers (ISPs) can use it to find Ubiquiti equipment on the internet and in closed networks.<\/p>\n<section class=\"sharethrough-top\" data-component=\"medusaContentRecommendation\" data-medusa-content-recommendation-options=\"{&quot;promo&quot;:&quot;promo_ZD_recommendation_sharethrough_top_in_article_desktop&quot;,&quot;spot&quot;:&quot;dfp-in-article&quot;}\">\n<\/section>\n<p>Hart said the amplification factor of this service can go up to 30-35, posing the real danger that attackers could find a way to weaponize this service and carry out DDoS attacks in excess of 1Tbps, which Hart described as &#8220;a crippling amount of traffic to all but the most fortified infrastructure.&#8221;<\/p>\n<p>The Rapid7 researcher said that the only good news at the moment is that this discovery protocol &#8220;does not appear to suffer from multi-packet responses,&#8221; making exploitation extremely hard for the time being, as attackers can only &#8220;reflect&#8221; small amounts of DDoS traffic.<\/p>\n<p>However, hackers should never be underestimated, a reason why Ubiquiti Networks announced last week that it was preparing a patch, even if in its current form the protocol doesn&#8217;t seem to be that harmful.<\/p>\n<p>&#8220;To our current knowledge, this issue cannot be used to gain control of network devices or to create a DDoS attack,&#8221; the hardware maker <a href=\"https:\/\/community.ubnt.com\/t5\/airMAX-General-Discussion\/airOS-airMAX-and-management-access\/td-p\/2654023\" target=\"_blank\" rel=\"noopener noreferrer\">said<\/a>.<\/p>\n<p>&#8220;As a temporary workaround for this issue while it is being investigated and resolved by the development team, network operators can block port 10001 at the network perimeter,&#8221; Ubiquiti Networks added.<\/p>\n<p>Also as a side effect, as an attacker is trying to use this service for DDoS attacks, remote access to the device via its SSH service is also cut out.<\/p>\n<p>While larger exploitation attempts have been spotted recently, Rapid7&#8217;s Hart said that the first attacks trying to exploit the Ubiquiti discovery service had been <a href=\"https:\/\/community.ubnt.com\/t5\/airMAX-General-Discussion\/Possible-Exploit-Losing-access-to-SSH-and-HTTP-HTTPS-on-CPEs\/td-p\/2411064\" target=\"_blank\" rel=\"noopener noreferrer\">spotted<\/a> last July, when some Ubiquiti device owners reported problems accessing SSH services on their devices.<\/p>\n<h3>Most affected devices are high-grade WISP equipment<\/h3>\n<p>Hart says that this discovery port isn&#8217;t specific to one Ubiquiti device, and is found on a wide variety of the vendor&#8217;s equipment, such as NanoStation (172,000 devices), AirGrid (131,000 devices), LiteBeam (43,000 devices), PowerBeam (40,000), and others.<\/p>\n<p>Most of the devices are WiFi antennas, bridges, and access points &#8211;equipment typically found on the network of wireless ISPs (WISPs). Hart says that while devices exposing port 10,001 are located all over the world, a large number of them are amassed in Brazil, the US, Spain, and Poland.<\/p>\n<p><span class=\"img aspect-set\"><img decoding=\"async\" src=\"https:\/\/www.zdnet.com\/article\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/\" class=\"lazy\" alt=\"Map of affected Ubiquiti devices, exposing port 10,001\" data-original=\" https:\/\/zdnet3.cbsistatic.com\/hub\/i\/2019\/02\/04\/32f41865-f4a7-427d-813d-96a0295f66e6\/d7a68d49b7dafa56060401a622074d4d\/rapid7-ubiquiti-map.png\"\/><\/span><noscript><\/p>\n<p><span class=\"img aspect-set\"><img decoding=\"async\" src=\"https:\/\/zdnet3.cbsistatic.com\/hub\/i\/2019\/02\/04\/32f41865-f4a7-427d-813d-96a0295f66e6\/d7a68d49b7dafa56060401a622074d4d\/rapid7-ubiquiti-map.png\" class=\"\" alt=\"Map of affected Ubiquiti devices, exposing port 10,001\"\/><\/span><\/p>\n<p><\/noscript> <span class=\"credit\">Image: Rapid7<\/span><\/p>\n<p>Of the 485,000 devices exposing this port, 17,000 have also been defaced already, according to Hart, featuring non-standard hostnames. This means that these devices are also most likely running outdated firmware.<\/p>\n<p>Ubiquiti devices have been defaced on a regular basis in the past years. For example, <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/tens-of-thousands-of-defaced-mikrotik-and-ubiquiti-routers-available-online\/\" target=\"_blank\" rel=\"noopener noreferrer\">in January 2018<\/a>, a hacker changed the hostnames of over 36,000 Ubiquiti devices to names such as &#8220;HACKED FTP server,&#8221; &#8220;HACKED-ROUTER-HELP-SOS-WAS-MFWORM-INFECTED,&#8221; or &#8220;HACKED-ROUTER-HELP-SOS-HAD-DEFAULT-PASSWORD.&#8221;<\/p>\n<p><a href=\"https:\/\/community.ubnt.com\/t5\/airMAX-General-Discussion\/Device-name-quot-HACKED-ROUTER-HELP-SOS-DEFAULT-PASSWORD-quot\/td-p\/1664028\" target=\"_blank\" rel=\"noopener noreferrer\">In 2016<\/a>, Ubiquiti devices were defaced again after hackers accessed devices, changed hostnames, but also access credentials &#8211;username &#8220;mother&#8221; and password &#8220;[expletive]er&#8221;.<\/p>\n<p>Device owners and ISP employees worried about attacks against their devices can follow <a href=\"https:\/\/community.ubnt.com\/t5\/EdgeRouter\/UDP-broadcasts-on-port-10001\/m-p\/461233#M10582\" target=\"_blank\" rel=\"noopener noreferrer\">this advice<\/a> from Ubiquiti on how to disable the discovery service on their devices.<\/p>\n<h3>More security coverage:<\/h3>\n<p>READ MORE <a href=\"https:\/\/www.zdnet.com\/article\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/#ftag=RSSbaffb68\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Ubiquiti devices could be exploited to launch DDoS attack. Exploitation attempts detected.<br \/>\nREAD MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":24934,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[62],"tags":[],"class_list":["post-24933","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-zdnet-security"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Over 485,000 Ubiquiti devices vulnerable to new attack 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Over 485,000 Ubiquiti devices vulnerable to new attack 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-02-04T12:10:51+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/over-485000-ubiquiti-devices-vulnerable-to-new-attack.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"425\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Over 485,000 Ubiquiti devices vulnerable to new attack\",\"datePublished\":\"2019-02-04T12:10:51+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/\"},\"wordCount\":700,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/02\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack.png\",\"articleSection\":[\"ZDNet | Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/\",\"name\":\"Over 485,000 Ubiquiti devices vulnerable to new attack 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/02\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack.png\",\"datePublished\":\"2019-02-04T12:10:51+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/02\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack.png\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/02\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack.png\",\"width\":1000,\"height\":425},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Over 485,000 Ubiquiti devices vulnerable to new attack\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Over 485,000 Ubiquiti devices vulnerable to new attack 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/","og_locale":"en_US","og_type":"article","og_title":"Over 485,000 Ubiquiti devices vulnerable to new attack 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-02-04T12:10:51+00:00","og_image":[{"width":1000,"height":425,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/over-485000-ubiquiti-devices-vulnerable-to-new-attack.png","type":"image\/png"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Over 485,000 Ubiquiti devices vulnerable to new attack","datePublished":"2019-02-04T12:10:51+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/"},"wordCount":700,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/over-485000-ubiquiti-devices-vulnerable-to-new-attack.png","articleSection":["ZDNet | Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/","url":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/","name":"Over 485,000 Ubiquiti devices vulnerable to new attack 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/over-485000-ubiquiti-devices-vulnerable-to-new-attack.png","datePublished":"2019-02-04T12:10:51+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/over-485000-ubiquiti-devices-vulnerable-to-new-attack.png","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/over-485000-ubiquiti-devices-vulnerable-to-new-attack.png","width":1000,"height":425},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/over-485000-ubiquiti-devices-vulnerable-to-new-attack\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Over 485,000 Ubiquiti devices vulnerable to new attack"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/24933","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=24933"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/24933\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/24934"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=24933"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=24933"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=24933"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}