Synology today announces an official collaboration with Pwn2Own Ireland 2024 (October 22-25) and recognizes the contribution of all participating security researchers. This initiative reflects Synology's commitments in ensuring the security of its data management solutions.
"We greatly appreciate the dedication and expertise of our research partners. Their efforts empower us to address potential risks in our products before they can impact users, reinforcing our commitment to data security," said Hanen Lin, Manager of Synology's Product Security Incident Response Team.
Since 2019, Synology has actively sponsored and collaborated with the global cybersecurity community, participating in security events, and maintaining a security bounty program. To date, Synology has engaged with more than 200 security experts and organizations worldwide in its commitment to staying ahead of emerging threats.
Synology acknowledges and thanks security researchers from Viettel Cyber Security, Rapid7, RET2 Systems, Midnight Blue Security, DEVCORE Research Team, and Team Smoking Barrels, as well as independent researchers and the event organizers, for their contributions.
Synology promptly worked with each team and validated all reported vulnerabilities. Since October 25, Synology has already begun rolling out security updates to systems with automatic updates enabled. Users are advised to keep their systems up to date to ensure data security and reliability.
For more information, please refer to the Synology Product Security Advisory: https://www.synology.com/en-global/security/advisory