Marcus Maciel
@underlinux
Followers
4,668
Following
169
Media
46
Statuses
448
Head of Cybersecurity @Ubiquiti . My tweets are my own. (auto delete after 30 days)
USA
Joined June 2009
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
#MyLoveMixUpTHep1
• 679213 Tweets
#LoveBullyรักให้ร้ายEP1
• 473347 Tweets
ariana
• 184102 Tweets
Sant Rampal Ji Maharaj
• 125725 Tweets
ガイナックス
• 125522 Tweets
Dr. Phil
• 114156 Tweets
Corinthians
• 87842 Tweets
THE FIRST TAKE
• 66989 Tweets
ノーヒットノーラン
• 61949 Tweets
大ちゃん
• 50343 Tweets
THE SECRET REVEALED
• 46893 Tweets
Sinner
• 42193 Tweets
ギターと孤独
• 40765 Tweets
Gainax
• 37164 Tweets
#StellisComing
• 36862 Tweets
MH E GM NO YOUTUBE
• 35394 Tweets
ドラコー
• 32603 Tweets
雇用統計
• 30809 Tweets
ジェイド
• 29974 Tweets
Dolly
• 29046 Tweets
Alcaraz
• 28937 Tweets
有岡くん
• 28016 Tweets
結束バンド
• 27247 Tweets
大瀬良投手
• 26334 Tweets
Brandy
• 26258 Tweets
JXW THIS MAN SOUNDTRACK
• 23650 Tweets
#ساعه_استجابه
• 22444 Tweets
READ THE ROOM SOON
• 19880 Tweets
ホタルちゃん
• 16710 Tweets
Türkiye Yüzyılı Maarif Modeli
• 15453 Tweets
アルジェンティ
• 13102 Tweets
penn badgley
• 12933 Tweets
ミッションインポッシブル
• 11706 Tweets
Pinned Tweet
How to get Ubiquiti Security Advisory Bulletin notifications?
1
1
16
Great day for Ubiquiti Friends, Our Cable Internet (UCI) solution is out.
32
11
160
Ubiquiti Friends: Multi-Factor Authentication (MFA) Requirement for All UI Accounts in July 2024
Starting July 22nd, Multi-Factor Authentication will be mandated for all Ubiquiti Accounts.
13
19
139
Ubiquiti Friends, if you Self Host your UniFi Network Application on a Linux device you should take a look on Security Advisory Bulletin 038
3
22
106
Ubiquiti UniFi Network Application 8.0.7 makes VLAN management easy to all.
13
10
105
Ubiquiti friends, all this is subscription free! Identity includes one click VPN, one click WiFi, Door Access and EV Charging, Desktop Clients for Windows and Mac, Mobile clients for iOS and Android.
16
4
101
Ubiquiti Friends - UniFi Network Application 8.2.93 is release candidate and It is beautiful.
9
3
85
Not sure how I missed this last year, but it shows how strong Ubiquiti Protect cameras are
3
1
64
Ubiquiti Friends, if you are running UniFi Connect or UniFi Access I recommend you to update. Please take a look on our Security Advisory bulletin 039 , thank you to
@Synacktiv
,
@SinSinology
and
@thezdi
for reporting this.
2
16
62
Ubiquiti Friends! It is a good day to Check Early Access .... specially UniFi Network Application on Early Access.
13
5
62
No, there is no CVE for running several years old firmware, with default or weak passwords and with ports open to the internet. If you had that you should not be managing routers in first place.
2
14
63
UniFi Network Application 8.1.113 just reached Release Candidate Status. You should take a look on our new features: OSPF, Switch ACL's and much more.
7
4
62
Ubiquiti Friends, Many of you asked to be able to specify IP manually on your UniFi Protect Mobile App to Connect to your UniFi Protect Application. Well... you may have a Surprise today if you check our Early Access Releases. Starting with Android this time 😉
6
1
62
Hello Ubiquiti Friends, We are happy to announce UniFi OS 3.2.7 is RC now take a look on Subscription Free UniFi Identity, Shadow Mode, InnerSpace, VLAN Magic, DNS Shield and much more.
7
4
61
UniFi Network 8.0.7 Release Candidate is out, and I think you will love it. Ubiquiti Friends this is the way.
9
3
55
I know many of you were waiting.... and Here it is Ubiquiti WiFiman for Windows (including Teleport) was Just released. Enjoy!
5
3
57
Hey Ubiquiti Friends, in case you missed since UniFi Network 8.1.113 if create a rule on LAN Local with source IP or NETWORK of the your VPN and choose your UDM IP /Network as destination and port 443 you can DROP inbound from VPN
4
1
52
This is just the beginning!
Welcome to
#UbiquitiInsider
, where we share insights into our latest R&D advancements. We're kicking off 2024 with several exciting updates and product releases:
🔹UniFi OS 3.2
🔹Improved Site Manager
🔹UniFi 7
Watch for more!
13
24
207
7
1
45
Ubiquiti Friends, UniFi Network 8.0.24 is now Release Candidate and it has a really cool feature. Admin Settings Change Logs
3
1
44
Not sure anyone noticed but this is the first version we released UDM/UDMPRO/UDMSE at the same time. I hope you are all happy.
4
2
45
Ubiquiti is working hard to make your IT life easy.
3
0
33
Have you tested UniFi Teleport ? It is Ubiquiti Zero configuration VPN that works even if your gateway is behind NAT.
7
0
32
Ubiquiti Friends with UniFi Protect 4.0 release what animation are you using on your Doorbell Pro ? Here is mine.
5
0
30
I have soo many vendors that register my email on their email list without my authorization that I reached a point of filtering everything. Here is what I did.
1- Created a Folder/Label called "Possible Spam"
2- Created Filters with following matches
a- unsubscribe
b- "If you…
3
4
30
@bettersafetynet
I'm curious have you ever opened a support ticket if yes can you share the number via DM ? I'm not sure if you have a really specific configuration that is triggering a bug, but that is not the experience that large majority of our customers have.
5
0
29
@bettersafetynet
I reached you via DM, if you can share all support tickets you opened would be a great learning experience to our support management team to do better.
1
0
27
Ok I don’t care if is true but man don’t you love when AI answers something and you are on top of the list ;) 😆 no idea if anyone will ever get a similar answer but i promise it was not manipulated to answer this.
4
0
25
Apparently there is a need to quote this again. Also some reporters really need to do some homework before posting BS. 🤦♂️
No, there is no CVE for running several years old firmware, with default or weak passwords and with ports open to the internet. If you had that you should not be managing routers in first place.
2
14
63
0
3
25
@slymush
How many cable modems you know that are rack-mountable , have 2.5 Gb/s port, and can also be adopted/managed by UniFi Network Application ?
4
0
25
@hkanji
@HoxtonVentures
@Ubiquiti
@PolyCompany
Hey
@hkanji
, Do you realize this is not Official (Stable) firmware, this was early access (Beta) that has restricted access and normally not recommended to be used in production.
2
0
22
Protect iOS App 1.21.0 now is Official and Added the ability to manually specify the console IP address for direct connections to the UniFi Console.
2
0
24
3
0
23
@ubiquiti
friends with UDM/UDM PRO take a look on EA today there is a surprise 3.1 waiting for you.
3
2
23
@ErrataRob
NAT increases complexity of an attack. Instead of a direct connection you depend on the connection starting from the other side. In CVSS perspective this would be User Interaction Required and or Attack Complexity High. I think we can say it may help reduce severity or risk.…
2
1
20
Ubiquiti Security Advisory Bulletin 037 - A malformed discovery packet sent by a malicious actor with preexisting access to the network could interrupt the functionality of device management and discovery.
3
8
21
Congratulations
@ECE_Bombshells
from
@ECE_Cheer
you are on the top of the 2023-2024 League 6 - All Girl Standings.
#ProudToBeECE
💙
2
6
19
We try hard and it is great to read this from the community. Our
@Hacker0x01
/ui is available to all. Join and help make Ubiquiti products more secure. Ahh if we like your research we are happy to ship you some cool new hardware on top of your bounties.
Ubiquiti is 💯 the only vendor that I have ever worked with that has one of the best security response team and highly skilled devs who make network equipments, etc. when ever I submit a report to them, their response time is in minutes ⚡️🔥
Go
@underlinux
and team 💪
2
5
49
0
2
19
The combination of Magic Site to Site VPN and UID can change organizations to something was not affordable to many before.
With Unifi os 3.1 now out in Release candidate we can now talk about Magic Site to site vpn
@Ubiquiti
2
3
29
1
1
17
Morning Rant! For all companies that don't do any simple verification like DNS TXT or HTML with some random code to verify user is legit owner of a certain domain. You are responsible for a good part of subdomain takeovers on the internet. DO BETTER!
2
2
16
@UK_Daniel_Card
hey criminals please stop using encryption or we will never be able to put you in jail..... They really try hard sell one thing for other.
1
0
16
In case it is not clear the Cameras was still working after.
1
0
14
For those asking for this on iOS....... You should look our Community Early Access today. We never know if there is a surprise waiting for you.......
Ubiquiti Friends, Many of you asked to be able to specify IP manually on your UniFi Protect Mobile App to Connect to your UniFi Protect Application. Well... you may have a Surprise today if you check our Early Access Releases. Starting with Android this time 😉
6
1
62
1
0
14
Store Link
2
2
14
@crosstalksol
More MFA options and even more security features are planned for the near future.
1
0
13
@bettersafetynet
Updates should never cause a factory reset if is happening we will find the bug or RMA your device. I may even include some swag in the bag for the help.
1
0
13
@UK_Daniel_Card
@bettersafetynet
@UK_Daniel_Card
don't forget we don't hide features behind expensive subscriptions, we pay more than majority if not all our competitors on security findings via our bug bounty program on and yes our bug bounty is public anyone can submit. 😃
1
0
12
I'm not kidding Hollywood could probably make a movie about the entire XZ saga. I'm sure many of my friends would love it. Who could take Jia Tan and Andres Freund role in the move ?!
1
0
11
@bettersafetynet
Hey Mick , I’m still waiting for those ticket numbers they will be really helpful to us understand what happened to avoid another customer running into this.
1
1
11
For those that missed this is a Official release now
Ubiquiti Friends, Many of you asked to be able to specify IP manually on your UniFi Protect Mobile App to Connect to your UniFi Protect Application. Well... you may have a Surprise today if you check our Early Access Releases. Starting with Android this time 😉
6
1
62
0
0
11
My wife just sent me a video and I have to agree, there is nothing like Brazilian Hot Dog. If you never tried imagine a hot dog covered with mashed potatoes, potato sticks, cheese, corn, olives, peas, Quail eggs and you decide if you want ketchup , mustard and mayo.
4
0
10
This is the UniFi way!
0
0
10
Loved this thread and everyone should read
Most franchise hotels are forced to pay upwards of $2/room/month for wifi support from a preferred vendor.
For us that would be nearly $200/mo.
$200/mo for a 1800 number no one will call.
This is dumb for a few reasons:
1) When wifi is installed properly, ongoing issues are…
43
6
197
1
0
10
Ahhhh! Forgot to mention this is just the beginning with way more features planned 😉
1
0
9
Once in a while a strong push is needed by vendors, So
@Ubiquiti
made the call to
#EnforceMFA
We are hoping others to follow. (You know who you Are!)
1
0
9
@MarceloLins68
@gugachacra
Do meu ponto de vista o problema ta bem explicado aqui a questao é isso é um problema legal ? Se sim tem que ser discutido e confirmado.
Elon Musk diz que X (antigo Twitter) teria que fingir que suspensões de contas determinadas por Moraes eram por violações aos Termos de Uso.
“Essa foi a gota d 'água e dissemos não”, afirmou o bilionário em transmissão ao vivo realizada nesta segunda-feira (8).
(Tradução:…
1K
3K
18K
2
0
9
@kyiv0fficial
We are aware and we can confirm we are not affected.
The short window of exposure xz versions 5.6.0 (released Feb. 24) and 5.6.1 (released March 9) reduced the risk of many vendors.
1
0
9
I know many of you asked to have firewall rules working for VPN , but this works now.
0
0
9
@notshenetworks
it is a complex topic, majority of forms don't have Mixed or Brown
They normally have
-American Indian or Alaska Native
-Asian
-Black or African American
-Native Hawaiian or Other Pacific Islander
-White
when you see this the answer will fall into White
1
0
8
Curious... If Apple had 2 apps 1 for iMessage and 1 for SMS/RCS would still be required to comply with DoJ lawsuit ? If yes, does this mean all other apps like WhatsApp, Signal, Telegram would also have to communicate with each other or they would also have the same problem ?
2
1
7
Apparently there is a mass scan for CVE-2024-24919 and everyone wants to be the first to report and collect $$$$. While I understand some programs may not accept zero day vulnerability reports (for a x days period), it is important to have them making the decision and not…
1
0
7
To be clear I’m not trying to be an
@Apple
fan here. It is an honest question to understand the cost of innovation or if this is a witch hunt.
Curious... If Apple had 2 apps 1 for iMessage and 1 for SMS/RCS would still be required to comply with DoJ lawsuit ? If yes, does this mean all other apps like WhatsApp, Signal, Telegram would also have to communicate with each other or they would also have the same problem ?
2
1
7
0
0
7
Curious on why some people think a real email looks like phishing?
You should always review if SMTP server pass SPF/DMARC, email from address and links on the email body.
If everything looks legit there is a good chance it is.
4
0
6
Once in a while I receive reports with "ICMP Timestamp Request Remote Date Disclosure" as a vulnerability CVE-1999-0524. I can say for sure that I have never seen someone be hacked with assistance of CVE-1999-0524. If you did please let me know. Super curious to know how.
2
1
6
STUN / TURN says hello to my friends
It’s literally an automatic firewall you don’t even need network engineers.
33
27
378
0
0
6
@kevinriggle
Hey
@kevinriggle
,
Everyone should update it is a CVSS 10, but not everyone understands how CVSS works so the risk is not the same to all. Unless you opened your UniFi OS firewall to the internet (they are closed by default), the attack can only happen from inside your network.
1
0
6
Password Spray / Brute Force exists and will always exist. You are safe if you use long and strong passwords or even better instead of password you use public keys. if possible and connection only happens from a known network you can have a firewall blocking unknown sources.
1
0
5
@syndk8
@Tamsininnit
@Ubiquiti
i’m curious on why you think Ubiquiti suck in security ? Also where did you read that Ubiquiti db was hacked 3 time or more ? can you show the source of this information, because i should know this and I’m not aware.
0
0
5
@TracketPacer
ouch i just realized that people may not know what I'm talking about and this may look strange... oopsies.
2
0
5
@threatintelctr
🤦♂️ really wish we had a filter for CVE’s this is another one that attacker requires admin credentials, meaning there is really no vulnerability as you can already do whatever with admin credentials.
2
0
5
BTW, Ubiquiti is receiving reports of it also, but no we don't use Checkpoint.
0
0
5
@HackingLZ
@dwizzzleMSFT
@SwiftOnSecurity
I can say from a good perspective :) that Ubiquiti takes security seriously and has one of the oldest public bug bounties programs in the industry. If you ever find anything feel free to report at
0
0
4