For sales inquiries,
please contact us at:
sales@thecus.com

For marketing inquiries, please contact us at:
marketing@thecus.com

Tech News

2014-04-25
Entire product line confirmed safe from OpenSSL bug from Day 1
Bookmark and Share

04/25/2014-Thecus today announces that its entire product line has been confirmed safe from the OpenSSL Heartbleed bug.

While Thecus NAS do make use of OpenSSL, the specific branches adopted by Thecus's software development team are in fact entirely unaffected by Heartbleed (as it only affects versions 1.0.1 through 1.0.1f). So when the news about Heartbleed broke, Thecus developers quickly established that Thecus devices were never vulnerable to malformed heartbeat requests.

Given the importance of confirming system vulnerability, a number of media outlets have reached out to Thecus support staff. In France, Stéphane Guérithault spoke to Next Inpact and confirmed that ThecusOS5 and OS6 were unaffected but that additional apps were being revised and updated by their respective developers so that Heartbleed fixes would be swiftly implemented.1

The Past Secured, the Future Ensured

With a number of other hardware manufacturers rushing to release new firmware, reports have started to emerge suggesting that, since the Heartbleed vulnerability was accidentally introduced in March 2012, a number of parties have grown aware of and exploited the loophole.2 What this means is that Thecus NAS have been some of the few devices fully immune to such intrusions over the past two years.

So as networks worldwide recover from potential intrusions, Thecus users can trust that the insight and expertise that protected their NAS from the Heartbleed bug are still hard at work designing the next generation of advanced hardware and software. Because with Thecus, come rain, shine, or missing bounds checks, your data will remain safe. 

Please note: Users are always advised to use the most up-to-date firmware and app versions on their NAS. Browser add-ons are also available to ensure visited websites are no longer vulnerable to Heartbleed. 

For more information on Heartbleed, go to:
http://en.wikipedia.org/wiki/Heartbleed

To read Next Inpact's interview with Thecus regarding Heartbleed (original in French), go to:
http://www.nextinpact.com/news/86958-faille-heartbleed-openssl-bitcoin-se-met-a-jour-certains-nas-touches.htm


About Thecus®
Established in 2004, Thecus Technology Corp provides market leading network attached storage and network video recorder solutions, committed to revolutionize how everyone from home user to enterprise level business centrally stores, manages and accesses their digital data both onsite and cloud-based. Thecus strives to deliver continuous innovation through cutting edge technology and design to provide data storage with the most customer-friendly platform, rapid performance and robust security. In May 2016, Thecus was formally acquired by Ennoconn Corporation and thus became part of the Foxconn IPC Technology group. Partnered together this diverse group of companies work in tandem to provide a total IoT (Internet of Things) solution. Now with an unparalleled portfolio to work with, Thecus is collaborating to bring unprecedented change to the network storage industry.

For sales inquiries, please contact us via email: sales@thecus.com 
For marketing inquiries, please contact us via email:
marketing@thecus.com