I came across this story today about a major security concern for My Cloud devices. This backdoor allows root access through the internet:
Uses username mydlinkBRionyg and password abc12345cba and apparently has not been patched, despite being known for over 6 months.
When will this be patched, and what is the official recommendation until it has been patched to keep our data secure?