Supply chain [SC] Supply Chain

Ubiquiti Networks Third-Party Breach (February 2021)

2021-02-01 [vendor] Not disclosed
Primary Source ↗

Incident Details

Ubiquiti discloses a data breach …………………………… American technology company Ubiquiti Networks is disclosed a data breach and is notifying its customers via email. UAT-10362 linked to LucidRook attacks targeting Taiwan-based institutions. Bitcoin Depot hack leads to $3.6M Bitcoin theft via stolen credentials.

Technical Details

Initial Attack Vector
Compromise of third-party service provider / vendor relationship
Vendor / Product
Not disclosed
Supply Chain Attack
✅ Confirmed third-party / vendor compromise

Timeline

  1. 2021-02-01 Breach occurred
  2. 2021-01-11 Publicly disclosed