By Nermeen Nabil Khear 
- Synology patches critical zero-click vulnerabilities in NAS devices
- Attackers can exploit vulnerabilities without user interaction
- $260,000 was awarded to researchers for discovering exploits
Synology has recently patched a critical security flaw in its NAS device products which could have allowed hackers to hijack victim units.
The company released two advisories to notify users about patched vulnerabilities in its data storage products, specifically those in Photos for DMS and BeePhotos for BeeStation.
The identified issues, shown off at the recent Pwn2Own Ireland 2024 event, allowed for remote code execution, posing a serious threat as they enabled attackers to take control of affected devices without user interaction.
Critical vulnerabilities revealed
Remote code execution vulnerabilities are especially dangerous as they give attackers the ability to execute arbitrary commands on the device, putting sensitive data at risk.
By addressing these flaws, Synology has ensured users who apply the updates can better protect their devices from potential attacks, as this not only prevents potential remote access, but also reduces the likelihood of ransomware, data theft, and other types of attacks that exploit NAS vulnerabilities.
Devices storing sensitive information are often connected to the internet, therefore they are usually susceptible to attacks. To guard against malicious actors, it is important to employ regular security patches.
Organized by Trend Micro’s Zero Day Initiative (ZDI), Pwn2Own Ireland 2024 awarded over $1 million to white-hat hackers who successfully demonstrated exploits across devices, including NAS systems, cameras, and smart speakers.
Synology was one of the companies with security flaws with its products earning researchers $260,000 in total for their discovered vulnerabilities. The company quickly responded to the competition findings and addressed critical flaws in its products.
Via SecurityWeek
You might also like
- Take a look at our guide to the best external storage
- These are the best portable SSDs
- Hackers are abusing Microsoft tools more than ever before
This articles is written by : Nermeen Nabil Khear Abdelmalak
All rights reserved to : USAGOLDMIES . www.usagoldmines.com
You can Enjoy surfing our website categories and read more content in many fields you may like .
Why USAGoldMines ?
USAGoldMines is a comprehensive website offering the latest in financial, crypto, and technical news. With specialized sections for each category, it provides readers with up-to-date market insights, investment trends, and technological advancements, making it a valuable resource for investors and enthusiasts in the fast-paced financial world.
Recent:
Everything new on Netflix in January 2025 rowan.davies@futurenet.com (Rowan Davies) | usagoldmines.c...
Google Whisk is a new way to create AI visuals using image prompts –here's how to try it | usagoldm...
New Year, new Microsoft Office! Last chance to save 20% | usagoldmines.com
Stop squinting at your tiny screen and get this gorgeous portable monitor | usagoldmines.com
These are the companies using AI-driven dynamic pricing the most - and the top users probably won't ...
Apple Now Offering Free Two-Hour Delivery on Last-Minute Gifts Joe Rossignol | usagoldmines.com
Apple Preparing iOS 18.2.1 Update for iPhone Joe Rossignol | usagoldmines.com
NYT Strands today — my hints, answers and spangram for Sunday, December 22 (game #294) | usagoldmin...
NYT Connections today — my hints and answers for Sunday, December 22 (game #560) | usagoldmines.com
Quordle today – my hints and answers for Sunday, December 22 (game #1063) | usagoldmines.com
OnePlus Watch 3: Upgrades Include Rotating Bezel and ECG Support Tim | usagoldmines.com
New 'HomePod' With 7-Inch Display, A18 Chip, and More Reportedly Launching Next Year Joe Rossignol |...
This new compact mini PC can support Intel 12th to 14th Gen processors and up to 96 GB DDR5 RAM udin...
CAMM2 memory modules promise significant advancements in memory technology with impressive read and ...
We may have to wait longer for the OnePlus Open 2 than we thought | usagoldmines.com
'Copper’s time has run out': Nvidia, AMD and TSMC have invested millions in a startup which may hold...
Popular Microsoft Office rival targets billion user milestone as it brings together office software,...
Fake parcel delivery texts are the fastest-growing phishing scam this holiday season – here’s how to...
Apple TV Plus: how to sign up, price, TV shows, movies, devices, and more tom.power@futurenet.com (T...
Today's the Last Day to Order From Apple for December 24th Delivery in the U.S. Juli Clover | usagol...
Best Apple Deals of the Week: Record Low Prices Return for AirTag, iPad, and MacBook Air Mitchel Bro...
More Galaxy S25 specs leak – and we might know just how thin the S25 Slim version is | usagoldmines...
Top Stories: iPhone 17 Designs, Foldable iPad or MacBook, and More MacRumors Staff | usagoldmines.co...
Green sea turtle gets relief from “bubble butt” syndrome thanks to 3D printing Jacek Krywko | usagol...
Samsung's rival has debuted new storage tech that offers a super-fast, high-capacity flash memory fo...
Exploring an undersea terrain sculpted by glaciers and volcanoes Ashley Balzer Vigil | usagoldmines....
Yellowjackets season 3: release date, cast, trailer and more news and rumors about the hit Paramount...
Real Excel pros master these fundamentals | usagoldmines.com
This $33 lifetime VPN won’t be available much longer | usagoldmines.com
ICYMI: the week's 7 biggest tech stories, from Meta smart glasses leaks to Superman's dog and ChatGP...
Chinese researchers repurpose Meta's Llama model for military intelligence applications udinmwenefos...
Microsoft Copilot Vision is the perfect holiday shopping buddy, and it’s finally here erichs211@gmai...
Four-Packs of AirTags Are $30 Off Right Now Daniel Oropeza | usagoldmines.com
Bluesky’s Latest Update Makes It Harder for Someone to Take Your Name Pranay Parab | usagoldmines.co...
12 Days of OpenAI ends with a new model for the new year erichs211@gmail.com (Eric Hal Schwartz) | u...
Only 15% of Steam users have played games released in 2024, but why? allisa.james@futurenet.com (All...
Going to Disney World? Don’t miss this free, immersive Star Wars Galaxy’s Edge experience jacob.krol...
NYT Strands today — my hints, answers and spangram for Saturday, December 21 (game #293) | usagoldm...
NYT Connections today — my hints and answers for Saturday, December 21 (game #559) | usagoldmines.c...
Quordle today – my hints and answers for Saturday, December 21 (game #1062) | usagoldmines.com
These Are My Favorite (Edible and Non-Edible) Food Discoveries of 2024 Allie Chanthorn Reinmann | us...
Google Is Working on AI-Powered Scam Detection for Chrome Jake Peterson | usagoldmines.com
Samsung Is Giving You a Lot of Control Over Your Galaxy's Display Jake Peterson | usagoldmines.com
Seven Services You (Probably) Don’t Need to Pay Someone to Do Jeff Somers | usagoldmines.com
Top 5 Apple Products to Look Forward to in 2025 Juli Clover | usagoldmines.com
12 days of OpenAI: The Ars Technica recap Benj Edwards | usagoldmines.com
Best live TV streaming service: YouTube TV vs Sling TV vs Hulu + Live TV and the rest | usagoldmine...
Best USB-C cables 2024: Get quality charging and data transfers | usagoldmines.com
Best laptops for engineering students 2024: Expert picks and advice | usagoldmines.com
My Favorite Cookies Come From Baking Scraps Beth Skwarecki | usagoldmines.com
Google Has a Hidden 'Squid Game' You Can Play Right Now Jake Peterson | usagoldmines.com
How to Blanch Vegetables (and Why You'll Want To) Allie Chanthorn Reinmann | usagoldmines.com
OpenAI announces o3 and o3-mini, its next simulated reasoning models Benj Edwards | usagoldmines.com
Rocket Report: ULA has a wild idea; Starliner crew will stay in orbit even longer Stephen Clark | us...
Horizon: Zero Dawn gets the graphical remaster a modern classic deserves Nate Anderson | usagoldmine...
Best monitor deals: Sweet holiday sales on OLED, gaming displays, and more | usagoldmines.com
Best holiday tech deals on Amazon: Save big with expert-curated picks | usagoldmines.com
Last-Minute Gift Ideas If Your Only Option Is the Drug Store Meredith Dietz | usagoldmines.com
The Ikarao Shell S1 Is Almost the Perfect Portable Karaoke Speaker Daniel Oropeza | usagoldmines.com
Amazon Discounts USB-C AirPods Max to $499.99 ($49 Off) Mitchel Broussard | usagoldmines.com
Asus just launched two business monitors with a unique feature I think all display manufacturers sho...
Man who claims he invented bitcoin faces prison after filing $1.1 trillion suit Jon Brodkin | usagol...
Startup set to brick $800 kids robot is trying to open source it first Scharon Harding | usagoldmine...
The Best Gifts for Avid Readers (That Aren't Books) Lindsey Ellefson | usagoldmines.com
15 Christmas Movies You Definitely Shouldn't Watch With Your Family Ross Johnson | usagoldmines.com
Lenovo's upcoming Legion Go S is likely using SteamOS, as Valve is coming to its CES 2025 event alli...
Google Chrome is testing a new AI tool that scans for scams to help save you from online trickery |...
The next two FIFA Women’s World Cups will only air on Netflix Scharon Harding | usagoldmines.com
Samsung’s pro-speed 512GB microSD card is now 50% off | usagoldmines.com
Level up your parties with this PartyBox speaker, now 33% off | usagoldmines.com
Next Galaxy Unpacked Event Appears Scheduled for January 22 Tim | usagoldmines.com
DEAL: Galaxy Tab S10 Ultra Just $199 After Heavy Discounts ($1000 Off!) Tim | usagoldmines.com
Meta Ray-Ban's Celebrity Voices, Rated from Least to Most Annoying Stephen Johnson | usagoldmines.co...
The Microsoft Surface Pro 11 Is Almost the Perfect Tablet-Laptop Hybrid David Nield | usagoldmines.c...
The MacRumors Show: Every Apple Product Coming in 2025 Hartley Charlton | usagoldmines.com
'Ice Dive' Apple Vision Pro Immersive Video Now Available Juli Clover | usagoldmines.com
It's been a huge year for criminals stealing cryptocurrency - and North Korea was largely to blame ...
Bluesky just made it harder for someone to steal your name, but verification is still a challenge la...
BeyondTrust says hackers hit its remote support products | usagoldmines.com
Usyk vs Fury 2 LIVE: fight stream, start time, cheapest PPV deals, build-up to the rematch of the ce...
US government removes Chinese chip giant AMEC from major blacklist | usagoldmines.com
Google will apparently offer “AI Mode” right on its main search page Kevin Purdy | usagoldmines.com
10-year AirTag battery case may solve annual replacement hassle Benj Edwards | usagoldmines.com
Nuphy Air60 HE review: This sleek magnetic keyboard is a joy to use | usagoldmines.com
Where to Watch New Year's Eve Celebrations From Around the World Elizabeth Yuko | usagoldmines.com
This Sony Speaker Is at Its Lowest Price Ever Right Now Pradershika Sharma | usagoldmines.com
7 new movies and TV shows to stream on Netflix, Prime Video, Max, and more this weekend (December 20...
Juniper Networks warns Mirai botnet is back and targeting new devices | usagoldmines.com
James Gunn's Superman movie: release date, trailer, confirmed cast, plot synopsis, and more news on ...
Lenovo’s laptop with rollable screen possibly spotted – and I’m not sure whether it’s a great idea, ...
Stranger Things season 5 has wrapped filming as Netflix doubles down on the hugely popular show's re...
The AI war between Google and OpenAI has never been more heated Benj Edwards | usagoldmines.com
Louisiana bars health dept. from promoting flu, COVID, mpox vaccines: Report Beth Mole | usagoldmine...
Automakers excoriated by Senators for fighting right-to-repair Jonathan M. Gitlin | usagoldmines.com
Today’s best laptop deals: Save big on work, school, home use, and gaming | usagoldmines.com
This HP Envy laptop with RTX 4060 is $500 off right now | usagoldmines.com
Corsair Flash Survivor Stealth review: A fast SSD disguised as a USB drive | usagoldmines.com
What's New on Paramount+ With Showtime in January 2025 Emily Long | usagoldmines.com
Apple Begins Discontinuing iPhone SE and iPhone 14 in EU Ahead of USB-C Requirement Joe Rossignol | ...
Apple's AirTag 4-Pack Hits Best-Ever $69.99 Price on Amazon Mitchel Broussard | usagoldmines.com