Categoría: seguridad

Production ready End-to-End encryption and new user interfaces arrive with new Nextcloud clients

We’re very excited to announce the availability of version 3.0 of our desktop client and 3.13 for Android! With these releases come big improvements to the user interface, making it easier for users to access the apps in Nextcloud Hub. This releases introduce production-ready end-to-end...

Ver más

BREAKING NEWS: ECJ rules US Cloud services fundamentally incompatible with EU Privacy laws

The US «culture of surveillance» received a major EU push back today, with the European Court of Justice ruling against the legitimacy of the EU’s Standard Contractual Clauses as a way of transferring data to legal regimes outside of the Union. As we wrote 2...

Ver más

Minor releases 18.0.6, 17.0.7 and 16.0.11 are here. End of support for 16!

Last Thursday we published minor updates to the current stable series. These came just one day after we made available version 19 of Nextcloud Hub. And this release, in turn, came out just 1 day after our 4 year anniversary! EDIT: shortly after 18.0.5 we...

Ver más

Security in Nextcloud: how to block 99.9% of user account attacks

If tech sites would write about every individual data leak, they’d have no time to cover anything else. Generally, only email-and-password leaks numbered in the millions get covered. LinkedIn: 164 million. Adobe: 38 million. MySpace: 359 million. Facebook: 200 to 600 million. It should be...

Ver más

Update 18.0.3 and 17.0.5 out, update soon!

Yesterday we made available minor releases with some critical bugfixes to Nextcloud 17 and 18. Please, upgrade at your earliest convenience! These are in-between updates outside our usual schedule to bring you some fixes as soon as possible. Note: running web facing software without regular...

Ver más

Nextcloud 17.0.2, 16.0.7 and 15.0.14 available for update! Plus Beta 3 of 18 for testing.

It is that time again: updates for the stable series of Nextcloud are available now. As always, these include stability and security improvements that are designed to be a safe and quick upgrade. This is one of the last for Nextcloud 15, so start planning...

Ver más

3 easy predictions for ransomware in 2020

As the new year quickly approaches, cyber criminals are once again preparing to attack individuals and especially businesses. Their attacks will be more sophisticated and even better at extracting money from you. We make three easy predictions for the next year and urge you to...

Ver más
Jos Poortvliet

Nextcry or how a hacker tried to exploit a NGINX issue with 2 Nextcloud servers out of 300.000 hit and no payout

As you might have read in various news outlets, an attacker has been trying to use a known and reported NGINX/PHP-FPM bug (CVE-2019-11043) to break into servers. After breaking into the server and gaining control, the attacker used a compiled python script that encrypts data...

Ver más

Urgent security issue in NGINX/php-fpm

Dear system administrators, In the last 24 hours, a new security risk has emerged around NGINX, documented in CVE-2019-11043. This exploit allows for remote code execution on some NGINX and php-fpm configurations. If you do not run NGINX, this exploit does not effect you. Unfortunately...

Ver más