Security News

Critical bug in EoL D-Link NAS devices now exploited in attacks

2024-11-13 18:36

Attackers now target a critical severity vulnerability with publicly available exploit code that affects multiple models of end-of-life D-Link network-attached storage (NAS) devices. [...]

#attack #critical #dlink #NAS

Week in review: Zero-click flaw in Synology NAS devices, Google fixes exploited Android vulnerability

2024-11-10 09:00

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443) Synology has...

#android #google #NAS #synology #vulnerability #CVE-2024-10443 #CVE-2024-43093

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

2024-11-08 19:21

More than 60,000 D-Link network-attached storage devices that have reached end-of-life are vulnerable to a command injection vulnerability with a publicly available exploit. [...]

#critical #dlink #NAS

Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices

2024-11-05 09:34

Taiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead to remote code execution. Tracked as...

#critical #NAS #patch #RCE #synology #CVE-2024-10443

Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)

2024-11-04 14:04

Synology has released fixes for an unauthenticated “zero-click” remote code execution flaw (CVE-2024-10443, aka RISK:STATION) affecting its popular DiskStation and BeeStation network attached...

#attack #CVE #NAS #synology #CVE-2024-10443

QNAP fixes NAS backup software zero-day exploited at Pwn2Own

2024-10-29 17:35

QNAP has fixed a critical zero-day vulnerability exploited by security researchers on Thursday to hack a TS-464 NAS device during the Pwn2Own Ireland 2024 competition. [...]

#backup #NAS #pwn2own #qnap #zeroday

Zyxel fixes critical command injection flaw in EOL NAS devices (CVE-2024-6342)

2024-09-10 09:01

Users of Zyxel network-attached storage (NAS) devices are urged to implement hotfixes addressing a critical and easily exploited command injection vulnerability (CVE-2024-6342). About...

#commandinjection #critical #CVE #NAS #zyxel #CVE-2024-6342

QNAP adds NAS ransomware protection to latest QTS version

2024-08-21 18:17

Taiwanese hardware vendor QNAP has added a Security Center with ransomware protection capabilities to the latest version of its QTS operating system for network-attached storage (NAS) devices. [...]

#NAS #qnap #ransomware

'Mirai-like' botnet observed attacking EOL Zyxel NAS devices

2024-06-24 14:39

Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.

#botnet #mirai #NAS #zyxel

Zyxel patches critical flaws in EOL NAS devices

2024-06-06 11:38

Zyxel has released patches for three critical vulnerabilities affecting two network-attached storage devices that have recently reached end-of-vulnerability-support. The vulnerabilities have been discovered and reported by Timothy Hjort, a vulnerability researcher with Outpost24's Ghost Labs.

#critical #NAS #zyxel #CVE-2024-29973 #CVE-2024-29972 #CVE-2024-29974

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News