The Synology Product Security Incident Response Team (PSIRT) is responsible for reacting to Synology product security incidents. The PSIRT manages the receipt, investigation, coordination, and public reporting of security vulnerability information regarding Synology products.
Fast security incident response
Security is our first priority. Upon receiving submissions about zero-day vulnerabilities, we make a preliminary assessment within eight hours, and fix any vulnerability within a day. A patch will be made available shortly after confirmation to keep all our products reliable and secure.
RESPONSIVE EVENT HANDLING
Enhancing security together with FIRST
The Forum of Incident Response and Security Teams (FIRST) is the premier organization and recognized as the global leader in incident response. As a member of the FIRST, Synology's PSIRT can respond to security incidents more effectively and share our industry know-how to help set up more comprehensive security standards with world-leading partners.
CVE Numbering Authority
Synology is authorized as a CNA (CVE Numbering Authority) by the MITRE Corporation, a world-leading security institute. Entitled to assign CVE IDs to vulnerabilities affecting our own products, we are committed to advancing security solutions.
Engage with the hacker community with bounty programs
Synology NAS is committed to high standards of safety. We hold the bounty programs every year and invite the top hackers to enhance the security of Synology products. Keeping user information safe and building a more secure product are the mission of Synology. We welcome the contribution of external security researchers and look forward to awarding them for their invaluable contribution to the security of all Synology users.
2015 HITCON Hack2Own
2016 Private Invitation
Synology Security White Paper
This white paper outlines Synology’s approach to security and policy compliance for Synology DiskStation Manager (DSM).Learn more
Self-protection against ransomware
Aware of the rampant malware problem, Synology introduces powerful security measures such as Snapshot Replication and Security Advisor, and offers regular security updates to defend users against potential threats.Learn more
Synology Product Security Advisory
Dedicated to customer safety and the ongoing safety of our products, Synology will take immediate measures once potential vulnerabilities are discovered by internal tests, researchers, or customers.Learn more
DSM offers advanced security measures to safeguard businesses against malicious attacks, protecting your critical digital assets and ensuring 24/7 operation.Learn more