![]() ![]() “The software also used an insufficiently computational password hash that would allow an attacker to force user passwords through brute force, which would result in unauthorized access to user data.” We strongly recommend our customers to update this software immediately to protect their vault devices, “said Western Digital. SanDisk PrivateAccess, formerly known as SanDisk SecureAccess, is used to store and protect sensitive files on SanDisk USB flash drives. In the process, however, a vulnerability has now been discovered that undermines the extra protection for the data. This is reported by Bleeping Computer. “SanDisk SecureAccess 3.02 used a one-way cryptographic hash with a predictable salt, making it vulnerable to dictionary attacks by a malicious user,” said Western Digital in a newly released security advisory. Western Digital has now informed customers of a security vulnerability that allowed attackers to force the re-issue of SanDisk SecureAccess passwords and then access the users’ protected files. The security update has started.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |