Logo of Ubiquiti Networks
|Traded as||NASDAQ: UBNT|
|Industry||Computer networking, energy|
|Headquarters||New York, NY, USA|
|Products||Computer networking devices|
|Revenue||$865.29 million (2017)|
|$285.02 million (2017)|
|$257.51 million (2017)|
|Total assets||$972.71 million (2017)|
|Total equity||$601.76 million (2017)|
Number of employees
|725 FTE (as of June 30, 2017)|
Ubiquiti Networks is an American technology company started in 2005. Based in New York, NY, Ubiquiti manufactures wireless data communication products for enterprise and wireless broadband providers with a primary focus on under-served and emerging markets.
Ubiquiti sells wired and wireless networking products under multiple brand names. The company also sells grid-tied solar kits.
Ubiquiti's first product line was its "Super Range" mini-PCI radio card series, which was followed by other wireless products.
The company's Xtreme Range (XR) cards operated on non-standard IEEE 802.11 bands, which reduced the impact of congestion in the 2.4 GHz and 5.8 GHz bands. In August 2007 a group of Italian amateur radio operators set a distance world record for point-to-point links in the 5.8 GHz spectrum. Using two XR5 cards and a pair of 35 dBi dish antennas, the Italian team was able to establish a 304 km (about 188 mi) link at data rates between 4 and 5 Mbit/s.
U-Boot configuration extraction
In 2013, it was discovered that there was a security issue in the version of the U-Boot boot loader shipped on Ubiquiti's devices. It was possible to extract the plaintext configuration from the device without leaving a trace using Trivial File Transfer Protocol (TFTP) and an Ethernet cable, revealing information such as passwords.
While this issue is fixed in current versions of Ubiquiti hardware, despite many requests and acknowledging that they are using this GPL-protected application, Ubiquiti refuses to provide the source code for the GNU General Public License (GPL)-licensed U-Boot. This made it impractical for Ubiquiti's customers to fix the issue.
It was reported by online reporter Brian Krebs, on June 15, 2015, that "Recently, researchers at the Fujitsu Security Operations Center in Warrington, UK began tracking [the] Upatre [trojan software] being served from hundreds of compromised home routers — particularly routers powered by MikroTik and Ubiquiti’s AirOS". Bryan Campbell of the Fujitsu Security Operations Center in Warrington, UK reported, "We have seen literally hundreds of wireless access points, and routers connected in relation to this botnet, usually AirOS", said Bryan Campbell, lead threat intelligence analyst at Fujitsu. "The consistency in which the botnet is communicating with compromised routers in relation to both distribution and communication leads us to believe known vulnerabilities are being exploited in the firmware which allows this to occur".
United States sanctions against Iran
Open-source licensing compliance
In 2015, Ubiquiti was accused of violating the terms of the GPL license for open-source code used in their products. The original source of the complaint updated their website on May 24, 2017, when the issue was resolved.
In 2015, Ubiquiti revealed that it lost $46.7 million when its finance department was tricked into sending money to someone posing as an employee.
- Witkowski, Wallace (September 18, 2017). "Ubiquiti shares hammered by Citron 'fraud' claim that contains little new evidence - MarketWatch". MarketWatch.com. Retrieved November 29, 2017.
That may be a factor that led Ubiquiti’s auditor, PWC, to cite a lack of internal controls in 2015, and an eventual staff clear-out that led Ubiquiti to move its headquarters from San Jose, Calif., to New York City and change auditors to KPMG.
- "Ubiquiti Networks Form 10-K 2017".
- "World Record 304km Wi-Fi connection". Gizmag.com. Retrieved December 22, 2012.
- "Hands-on: Ubiquiti's Amplifi covers the whole house in a Wi-Fi mesh". Ars Technica. July 20, 2016. Retrieved December 1, 2016.
- "Re: AirOS and Security: DUMP of configuration files with TFTP or other thing". Ubnt.com. July 16, 2014. Retrieved May 9, 2017.
- "GPL archive missing components". Ubnt.com. March 2, 2013. Retrieved May 9, 2017.
- "Four ways Ubiquiti Networks is creatively violating the GPL". Retrieved October 28, 2015.
- "Crooks Use Hacked Routers to Aid Cyberheists". June 2015.
- "Ubiquiti Networks IPO Priced To Work At $15?". Seeking Alpha. Retrieved December 22, 2012.
- "Annual report for fiscal year ended June 30, 2012". Form 10-K. US Securities and Exchange Commission. September 21, 2012. Retrieved October 16, 2013.
- "Ubiquiti Networks settles with OFAC for alleged violations of Iran sanctions", Debevoise & Plimpton LLP, March 7, 2014.
- Riley Baird (April 7, 2015). "How Ubiquiti Networks Is Creatively Violating the GPL". web.archive.org. Archived from the original on April 30, 2017. Retrieved December 12, 2017.
- Riley Baird (May 24, 2017). "N/A". web.archive.org. Archived from the original on 2017-05-24. Retrieved December 12, 2017.
- "Fraudsters duped this company into handing over $40 million". Fortune.com. August 10, 2015. Retrieved October 19, 2015.