Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)

Synology has released fixes for an unauthenticated “zero-click” remote code execution flaw (CVE-2024-10443, aka RISK:STATION) affecting its popular DiskStation and BeeStation network attached storage (NAS) devices. About CVE-2024-10443 CVE-… Continue reading Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)

Critical vulnerabilities open Synology, QNAP NAS devices to attack

Users of Synology and QNAP network-attached storage (NAS) devices are advised to be on the lookout for patches for several critical vulnerabilities affecting Netatalk, an open-source implemention of the Apple Filing Protocol (AFP) that allows Unix-like… Continue reading Critical vulnerabilities open Synology, QNAP NAS devices to attack

NAS devices under attack: How to keep them safe?

Network-attached storage (NAS) devices are a helpful solution for storing, managing, and sharing files and backups and, as such, they are an attractive target for cyber criminals. They are most often used by consumers (on home networks) and small-to-me… Continue reading NAS devices under attack: How to keep them safe?

Synology announces DSM 7.0, enhancing security, system management capabilities

Synology will officially release DiskStation Manager (DSM) 7.0 and a significant expansion of their cloud platform, C2 in the coming weeks. Focusing on enhancing security, system management capabilities, and improving data collaboration, DSM 7.0 is a l… Continue reading Synology announces DSM 7.0, enhancing security, system management capabilities

PPP Daemon flaw opens Linux distros, networking devices to takeover attacks

A vulnerability (CVE-2020-8597) in the Point-to-Point Protocol Daemon (pppd) software, which comes installed on many Linux-based and Unix-like operating systems and networking devices, can be exploited by unauthenticated attackers to achieve code execu… Continue reading PPP Daemon flaw opens Linux distros, networking devices to takeover attacks

Most home routers lack simple Linux OS hardening security

A new assessment of 28 popular models for home users failed to find a single one with firmware that had fully enabled underlying security hardening features offered by Linux. Continue reading Most home routers lack simple Linux OS hardening security

Mirai Variant Targets Financial Sector With IoT DDoS Attacks

Researchers said a Mirai botnet variant, possibly linked to the IoTroop or Reaper botnet, was leveraged in attacks against the financial sector. Continue reading Mirai Variant Targets Financial Sector With IoT DDoS Attacks

Simplify QNAP, FreeNAS, & Synology Access Management

Many IT organizations have Network Attached Storage (NAS) platforms. These systems are often leverage the SMB/CIFS networking protocol and can be classified as Samba file servers. QNAP, FreeNAS, and Synology…
The post Simplify QNAP, FreeNAS, & Sy… Continue reading Simplify QNAP, FreeNAS, & Synology Access Management