QNAP and other network storage makers issue security advisories on OpenSSL flaws

QNAP and other network storage makers have issued security advisories for OpenSSL remote code execution and denial-of-service (DoS) vulnerabilities that impact its network-attached storage (NAS) devices.

Continue ReadingQNAP and other network storage makers issue security advisories on OpenSSL flaws

Legacy QNAP NAS devices vulnerable to zero-day cyberattacks

Security researchers have warned legacy QNAP NAS devices are vulnerable to zero-day cyberattacks. Although QNAP patched two vulnerabilities in recent firmware updates, the company acknowledged patches were not yet available for certain legacy devices.

Continue ReadingLegacy QNAP NAS devices vulnerable to zero-day cyberattacks

450K internet-connected QNAP devices exposed to RCE vulnerabilities

A security researcher disclosed four vulnerabilities in QNAP PhotoStation and CGI programs. All QNAP network-attached storage (NAS) devices running Photo Station are vulnerable and of those, approximately 450,000 QNAP NAS devices are exposed to the internet.

Continue Reading450K internet-connected QNAP devices exposed to RCE vulnerabilities