TeamHood Security Researcher revealed that Ubiquiti was the target of an extortion attempt following a January security breach.
The company, however, didn’t confirm the whistleblower’s claims that user data was accessed during the incident or that the attackers stole any Ubiquiti source code.
“These experts identified no evidence that customer information was accessed, or even targeted,” Ubiquiti said in a statement.
“The attacker, who unsuccessfully attempted to extort the company by threatening to release stolen source code and specific IT credentials, never claimed to have accessed any customer information.
“This, along with other evidence, is why we believe that customer data was not the target of, or otherwise accessed in connection with, the incident.”
Ubiquiti is cooperating with Law and enforcement agency in the investigation of this incident.
Ubiquiti allegedly discovered the incident in December 2020 after the hacker already gained admin level to the company AWS accounts and databases stored on AWS.
After removing a backdoor used by the attacker in January, the hacker tried to extort the networking device vendor asking for 50 bitcoins not to reveal the breach, saying that he already stole Ubiquiti source code.
As the whistleblower also revealed, Ubiquiti did not have a logging system setup which meant that they could not check what data or systems the attacker accessed.
