Unifi USG DDoS Amplification

Unifi USG DDoS Amplification

We suspect a new  Ubiquiti  DDoS taking advantage of open UDP/10001 on the USG (Universal Security Gateway) Firewall. These packets are overloading devices with amplification packets going outbound from business and home user networks. The issue started yesterday Firewall has a large capacity that’s being completely utilized. Investigating further to confirm the attack reported by @ZDNET. Seeking more information on who’s building the tools, and the organizations who are being attacked

Blog is under development…

https://www.zdnet.com/article/over-485000-ubiquiti-devices-vulnerable-to-new-attack/

https://blog.rapid7.com/2019/02/01/ubiquiti-discovery-service-exposures/

Leave a Reply

Your email address will not be published. Required fields are marked *