Data storage device maker Western Digital revealed Monday a “network security incident” involving unauthorized access to its systems.
The breach is said to have occurred on March 26, 2023, and gave an unnamed third party access to “a number of company systems.”
After discovering the hack, Western Digital said it launched an incident response effort and enlisted the help of cybersecurity and forensic experts to conduct an investigation.
It also said it was coordinating with law enforcement on the matter, adding that the investigation was at an early stage.
The company has taken several services offline, and threat actors may have obtained “certain data from the system,” and is working to estimate the nature and extent of the data accessed.
Become an Incident Response Pro!
Unlocking the Secrets of Bulletproof Incident Response – Master the 6-step process with Asaf Perlman, IR Lead at Cynet!
Don’t miss it – secure your seat!
Western Digital didn’t disclose the exact services affected, but the My Cloud status page shows that cloud, proxy, web, authentication, email, and push notification services are down.
“Western Digital is currently experiencing a service outage affecting the following products: My Cloud, My Cloud Home, My Cloud Home Duo, My Cloud OS5, SanDisk ibi, SanDisk Ixpand Wireless Charger,” the company said in April. said in a message posted on the 2nd.
