QNAP

Network Security

QNAP Releases Patch to Fix PHP Security Flaw Affecting Select NAS Devices

QNAP has released a patch to address a new PHP security vulnerability that affects specific configurations of its Network Attached Storage (NAS) devices. The company has urged its customers to update their systems to protect against remote code execution (RCE) attacks. Tracked as CVE-2019-11043, the security flaw was first reported to QNAP three years ago,...

LATEST

Security

QNAP Warns NAS Users About New DeadBolt Ransomware Campaign

QNAP has published an advisory about a new stream of DeadBolt ransomware attacks targetting its network-attached storage (NAS) devices worldwide. The company advises customers to immediately update their devices to the latest versions of QTS or QuTS hero operating systems. The latest DeadBolt ransomware campaign follows the previous attacks reported back in January, March, and…

View Article
Network Security

QNAP Confirms New Critical Flaws Affecting Some Network-Attached Storage Devices

Last week, QNAP published a security advisory to warn customers about new critical flaws in an open-source fileserver technology integrated into its network-attached storage (NAS) devices. The company has advised customers to look out for updates to address the vulnerabilities affecting some of its products. QNAP explained in its advisory that these flaws exist in…

View Article
security hero

QNAP to Fix Critical OpenSSL Bug Impacting NAS Devices

Taiwan-based QNAP Systems has confirmed a new OpenSSL bug that impacts most of its network-attached storage (NAS) devices. According to the company’s advisory, the security flaw leads to an infinite loop that would result in a denial-of-service (DoS) state. The security vulnerability, tracked as CVE-2022-0778 and issued a CVSS “high” severity score of 7.5, has…

View Article
cyber security 3400657 1920 1280x768 1

QNAP Warns Against ‘Dirty Pipe’ Linux Flaw That Affects Several NAS Devices

Here’s a look at what you need to know QNAP has issued an advisory about a new Dirty Pipe Linux vulnerability that affects a wide range of Network Attached Storage (NAS) devices. It allows attackers to overwrite data in arbitrary read-only files. The Dirty Pipe security flaw affects all NAS devices running kernel version 5.10.60….

View Article

QNAP NAS Devices Being Targeted by Qlocker Ransomware Again

QNAP, a Taiwan-based network-attached storage (NAS) manufacturer, has issued an advisory about ransomware and brute-force attacks that affect all network-attached storage devices. The ransomware attacks began targeting the NAS device suite on January 6, and the company urges customers to secure their compromised devices as soon as possible. “Open the Security Counselor on your QNAP…

View Article