Pwn2Own

Blog
digitpatrox3 weeks ago
86

Synology hurries out patches for zero-days exploited at Pwn2Own

Synology, a Taiwanese network-attached storage (NAS) appliance maker, patched two critical zero-days exploited during last week’s Pwn2Own hacking competition within days. Midnight Blue security researcher Rick de Jager found the critical zero-click vulnerabilities (tracked together as CVE-2024-10443 and dubbed RISK:STATION) in the company’s Synology Photos and BeePhotos for BeeStation software. As Synology explains in security advisories published two days after the…
Read More »
Blog
digitpatrox3 weeks ago
29

QNAP patches second zero-day exploited at Pwn2Own to get root

QNAP has released security patches for a second zero-day bug exploited by security researchers during last week’s Pwn2Own hacking contest. This critical SQL injection (SQLi) vulnerability, tracked as CVE-2024-50387, was found in QNAP’s SMB Service and is now fixed in versions 4.15.002 or later and h4.15.002 and later. The zero-day flaw was patched one week after allowing YingMuo (working with…
Read More »
Blog
digitpatrox3 weeks ago
26

QNAP fixes NAS backup software zero-day exploited at Pwn2Own

QNAP has fixed a critical zero-day vulnerability exploited by security researchers on Thursday to hack a TS-464 NAS device during the Pwn2Own Ireland 2024 competition. Tracked as CVE-2024-50388, the security flaw is caused by an OS command injection weakness in HBS 3 Hybrid Backup Sync version 25.1.x, the company’s disaster recovery and data backup solution. “An OS command injection vulnerability…
Read More »
Blog
digitpatrox4 weeks ago
33

Over 70 zero-day flaws get hackers $1 million at Pwn2Own Ireland

The fourth day of Pwn2Own Ireland 2024 marked the end of the hacking competition with more than $1 million in prizes for over 70 unique zero-day vulnerabilities in fully patched devices. The hacking contest pits security researchers against various software and hardware products, in an attempt earn the “Master of Pwn” title by compromising targets in eight categories ranging from mobile phones, messaging…
Read More »
Blog
digitpatrox4 weeks ago
36

QNAP, Synology, Lexmark devices hacked on Pwn2Own Day 3

The third day of Pwn2Own Ireland 2024 continued to showcase the expertise of white hat hackers as they exposed 11 zero-day vulnerabilities, adding $124,750 to the total prize pool, which now stands at $874,875. Pwn2Own, a global hacking competition, challenges top security researchers to exploit a range of software and hardware devices, with the ultimate goal of earning the prestigious…
Read More »

Pwn2Own

Synology hurries out patches for zero-days exploited at Pwn2Own

QNAP patches second zero-day exploited at Pwn2Own to get root

QNAP fixes NAS backup software zero-day exploited at Pwn2Own

Over 70 zero-day flaws get hackers $1 million at Pwn2Own Ireland

QNAP, Synology, Lexmark devices hacked on Pwn2Own Day 3

New Windows 11 tool can fix devices that won’t boot remotely – Computerworld

Green Bubble Chats on iPhone Still Have a Major Security Issue

Fried chicken chain Bojangles breached; SSNs and medical info stolen by ransomware gang

5 Proven Benefits of Contact Center Workforce Optimization

How It Works and Key Services Explained 2024

Do Molekule Air Purifiers Live Up to the Hype?

Is the time right for asynchronous collaboration?

How AI Drives Supply Chain Automation for Retailers Worldwide

Microsoft will finally let you stream Xbox games you already own via Game Pass — here’s what you can play right now

Texas Board of Physical Therapy Examiners breached, SSNs and other info compromised

US citizen charged with aiding North Korean hackers moonlighting as tech workers

Indiana Jones The Great Circle Is Here with a Release Date and a PS5 Launch