San Francisco, November 12, 2024 — D-Link’s choice to abandon patches for vulnerable NAS devices puts over 61,000 units at risk of remote hacking attacks, leaving user data exposed.
In a surprising move that’s sparking concern across cybersecurity circles, D-Link has announced it will not issue a patch for a critical vulnerability affecting its end-of-life (EOL) NAS (Network-Attached Storage) devices.
The flaw, identified as CVE-2024-10914, leaves over 61,000 NAS units exposed to potential command injection attacks, with hackers able to remotely access, modify, and delete stored data by exploiting a vulnerability in the device’s “name” parameter. This decision has rendered outdated D-Link models like DNS-320 and DNS-340L an easy target for malicious actors.
This vulnerability could lead to devastating data breaches. D-Link’s refusal to patch these models sends a clear signal that users must take their security into their own hands.
The affected devices, no longer receiving firmware updates or security support, are highly susceptible to attacks that require minimal technical expertise. Attackers simply send a crafted HTTP GET request with a malicious “name” parameter, gaining remote access to the NAS device and risking extensive data compromise.
D-Link’s official advice to users is stark: disconnect these devices from public internet access or consider replacing them. The company also suggests setting up firewall rules to limit network access and using strong, frequently updated credentials. However, for many users and organizations relying on these devices, these measures fall short of a true fix.
D-Link’s move highlights the risks of relying on EOL devices. When devices are no longer supported, they become ticking time bombs for cyber vulnerabilities.
Other News At VPNRanks
Hey, wait!
Stay informed on the latest privacy updates, cybersecurity insights, and internet freedom news by following VPNRanks news daily! As your primary resource for critical updates in online security, we ensure you’re always in the know. Make VPNRanks your go-to guide for safeguarding your digital life!
