Pwn2Own Ireland 2025 delivered another intense set of device breakouts, including multiple successful attacks against Synology and QNAP kit. Below I have taken the contest results and turned them into a NASCompares style update, with a short summary for each exploit, an engineer friendly plain English explanation of how the bugs worked, the immediate impact, […]
The Current Synology & QNAP NAS and OpenSSL Security Issues Explained As many of you may have heard, in recent weeks there were two vulnerabilities identified in the OpenSSL encryption platform, a popular SSL option for many sites and servers, that provided an opening for particularly industrious interlopers to access a site via a weakness […]
Dirty Pipe Linux Weakness and Why You and your Linux Based NAS Should Care? For those that might not be aware, a vulnerability in Linux kernel 5.8 and above was disclosed by Max Kellerman last week and publically disclosed (with a proof of concept demonstrating the weakness) and this vulnerability was reported (tracked under CVE-2022-0847) […]
Connecting DIRECTLY With Your NAS without Using a Switch or Router Let’s all be honest for a second about one of the biggest advantages and disadvantages of network-attached storage, namely the speed, external security and method with which you can access your data. Having secure yet unlimited access to the data locked in your NAS […]
Connecting DIRECTLY With Your NAS without Using a Switch or Router Let’s all be honest for a second about one of the biggest advantages and disadvantages of network-attached storage, namely the speed, external security and method with which you can access your data. Having secure yet unlimited access to the data locked in your NAS […]
