Lenovo confirms faulty NAS drives exposed 36TB of sensitive data
Lenovo has confirmed that a vulnerability in one of its legacy network-attached storage (NAS) drives was the cause of a gigantic 36TB data leak. The “trivially easy” to exploit vulnerability was found in a range of Lenovo-EMC NAS devices which allowed an unauthorised user to access the drive’s contents through its application programming interface (API).