September 22, 2023

QNAP has addressed an improper access control vulnerability in the devices’ disaster recovery and data backup software in its NAS Storage

Internet-connected NAS devices are popular targets with threat actors who’ve target vulnerabilities in their software to deploy ransomware or even to use their computing resources for malicious purposes like mining cryptocurrency.

QNAP devices have been at the receiving end of various cyber attack campaigns lately, due to the popularity of the devices. But QNAP has been very active in patching vulnerabilities as well.

This critical security vulnerability which has been patched can be exploited to enable attackers to gain remote access to the devices and escalate privileges, execute commands, and access sensitive information without authorization.

Last year QNAP fixed a cross-site scripting vulnerability, and also issued patches to neutralize malware that used the QNAP device to mine cryptocurrency, earlier this year.

Tags:

Leave a Reply

Related Post

Qlocker locks Qnap

April 23, 2021

UnityMiner Hits QNAP

March 14, 2021

You may have missed

T-Mobile and Data Breach tightly coupled

September 21, 2023

Cisco Acquires Splunk in a blockbuster deal

September 21, 2023

Atlassian BitBucket and Confluence Vulnerabilities

September 21, 2023

Snatch ransomware Dissection

September 21, 2023

Fortinet Fixes Vulnerabilities in FortiOS

September 20, 2023

Trend Micro Endpoint Vulnerability – CVE-2023-41179

September 20, 2023
%d bloggers like this: