If you own the above item, you’d best download and install the patch to prevent file tampering/theft by hackers.

“The vulnerabilities primarily affect owners of Seagate Wireless Plus Mobile Storage, Seagate Wireless Mobile Storage, and LaCie Fuel devices purchased since October 2014.

“With products from large vendors such as Seagate, there tend to be numerous product names for basically the same product under the same vendor’s name or another vendor,” Tangible Security said in a blog post. “Tangible Security cannot enumerate all of the named products as well as Seagate. Other named products may be affected.”

The worst flaw is thanks to a hard-coded username and password that gives an attacker access to an undocumented Telnet service. Telnet is a command line method of logging into one computer from another over the Internet or a local network.” – Ian Paul

If that were the only flaw, it wouldn’t be so bad, but there’s a second and third flaw.

“Anyone running a wireless Seagate device with firmware versions 2.2.0.005 or 2.3.0.014 can download a patch directly from Seagate that upgrades you to firmware version 3.4.1.105. If you’re not sure if your drive is affected, go to Seagate’s Download Finder, enter your serial number, and see if an update is available for your device. This is a pretty serious vulnerability that has been public for at least one week. You’ll want to download the patch as soon as possible if your drive is affected.” – ibid

Source:

http://www.macworld.com/article/2980845/security/severe-external-drive-vulnerability-prompts-seagate-to-issue-emergency-patch.html?utm_content=buffer9f3c2&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer