Hello,
I recently updated my WD My Cloud to firmware v04.05.00-342.
In my router’s log, I noticed several UDP port scan attacks coming from the IP of the My Cloud and subsequent intrusions to my network from an external IP address!
Not sure if these were there before the update.
Here is one of the log entries:
Security|Warning|Detect UDP port scan attack, scan packet from (internal IP of the My Cloud)
Security|Warning|Intrusion → SRC=159.203.201.176 DST=(my WAN IP) LEN=40 TOS=0x00 PREC=0x20 TTL=244 ID=54321
According to abuseipdb.com, the SRC IP is a known attack source.
I turned off the cloud access to the MyCloud, but I think this is a serious issue which should be looked into.
