network-attached storage (NAS)

Zero-day vulnerabilities in Netatalk affect NAS products from Synology, QNAP and Western Digital. Protect your storage solutions before they’re encrypted with ransomware

On: April 29, 2022

Several manufacturers of network-attached storage (NAS) solutions have alerted their customers to the detection of critical vulnerabilities in Netatalk. The exploitation of these flaws was demonstrated in one of theRead More →

Critical zero-day security vulnerabilities in QNAP devices allows remote hacking

On: April 28, 2022

In: Vulnerabilities

Technology firm QNAP has asked its users to disable the AFP file service protocol in its network-attached storage (NAS) deployments on a temporary basis while fixing some critical vulnerabilities inRead More →

6 critical vulnerabilities in Western Digital My Cloud OS 5

On: February 18, 2022

In: Vulnerabilities

Multiple vulnerabilities have been detected in My Cloud OS 5, the operating system of network-attached storage (NAS) solutions developed by Western Digital. According to the report, the successful exploitation ofRead More →

World’s richest hacker group now focusing on Linux and NAS devices with new ransomware variant

On: June 29, 2021

In: Malware

A recent report notes that REvil ransomware operators are now employing a Linux encryption tool to start attacking virtual machines like VMware ESXi. This could be an especially prolific timeRead More →

Critical vulnerabilities on QNAP NAS devices; update now

On: December 23, 2020

In: Vulnerabilities

QNAP security teams have released a set of updates to fix multiple critical vulnerabilities present on their network-attached storage (NAS) devices with QES, QTS, and QuTS hero operating systems. InRead More →

LILIN IP cameras and Zyxel NAS devices hacked to launch DDoS attacks; protect your IoT devices

On: March 23, 2020

In: Vulnerabilities

A special report crafted by computer forensics experts has been sent to the companies Zyxel and LILIN after it was discovered that their Internet of Things (IoT) devices are beingRead More →

Critical zero day vulnerability affecting Zyxel NAS storages

On: February 25, 2020

In: Data Security

Zyxel, a network hardware manufacturer, has just released an update to fix a critical vulnerability in multiple network attached storage (NAS) devices that would allow you to take remote controlRead More →

Modern Robin Hood: Ethical Hacker takes control of cybercriminal servers to publish ransomware encryption keys

On: October 7, 2019

In: Incidents

The most frustrating part of being a cybercrime victim is the low chance of an attacker getting caught; however, malicious hackers don’t always get away with it without taking punishment.Read More →

Iomega StorCenter & Lenovo EMC NAS devices are leaking users’ information

On: July 17, 2019

In: Vulnerabilities

Web application security specialists reported critical firmware-level vulnerability in Lenovo’s storage devices connected to network; if exploited, this flaw could compromise the security of the information of the users ofRead More →

How to exploit weak NFS permissions through Privilege Escalation?

On: April 25, 2018

In: Data Security, Important

If you have a Low privilege Shell on any machine and you found that a machine has an NFS share you might be able to use that to escalate privileges.Read More →

network-attached storage (NAS)

Zero-day vulnerabilities in Netatalk affect NAS products from Synology, QNAP and Western Digital. Protect your storage solutions before they’re encrypted with ransomware

Critical zero-day security vulnerabilities in QNAP devices allows remote hacking

6 critical vulnerabilities in Western Digital My Cloud OS 5

World’s richest hacker group now focusing on Linux and NAS devices with new ransomware variant

Critical vulnerabilities on QNAP NAS devices; update now

LILIN IP cameras and Zyxel NAS devices hacked to launch DDoS attacks; protect your IoT devices

Critical zero day vulnerability affecting Zyxel NAS storages

Modern Robin Hood: Ethical Hacker takes control of cybercriminal servers to publish ransomware encryption keys

Iomega StorCenter & Lenovo EMC NAS devices are leaking users’ information

How to exploit weak NFS permissions through Privilege Escalation?

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Hacking with MagicDots: Exploiting Dots & Spaces in Filenames/Pathnames for Permanent Admin Rights

Compromising Cryptographic Key Security Through PuTTY: A Deep Dive into CVE-2024-31497

How to hack a LG Smart TV via vulnerabilities in LG WebOS?

How to Check if a Linux Distribution is Compromised by the XZ Utils Backdoor in 6 Steps

CVE-2023-5528: Kubernetes Flaw Jeopardizing Windows Node That Can’t Be Ignored

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

The API Security Checklist: 10 strategies to keep API integrations secure

11 ways of hacking into ChatGpt like Generative AI systems

How to send spoof emails from domains that have SPF and DKIM protections?

Silent Email Attack CVE-2023-35628 : How to Hack Without an Email Click in Outlook

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

CVSS 4.0 Explained: From Complexity to Clarity in Vulnerability Assessment

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Inside the Scam: How Ransomware Gangs Fool You with Data Deletion Lies!

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

How hrserver.dll stealthy webshell can mimic Google’s Web Traffic to hide and compromise networks

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]