QNAP NAS vulnerabilities not patched after almost a year
Click here to post a comment for QNAP NAS vulnerabilities not patched after almost a year on our message forum
sdamaged99
This is why i use unRAID and not a "consumer" NAS
snip3r_3
Kaarme
Maybe if the attacker could make the device explode like Note 7, the company would do something about it.
__hollywood|meo
this happened because QNAP doesnt properly encrypt firmware update traffic. the simple fact that such absurd oversights occur to this day doesnt surprise me anymore; wat im shocked by is that the company was notified a year ago & has not updated the vulnerable protocol in any way.
this kind of sloppy crap also highlights exactly why automatic updates are cancer. if you want a secure system, dont trust others to do your work for you.
Kaarme