• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

QNAP Customers Hit by Double Ransomware Blitz

You are here: Home / General Cyber Security News / QNAP Customers Hit by Double Ransomware Blitz
June 20, 2022

Customers of a popular network-attached storage (NAS) seller surface to be caught in the middle of two ransomware campaigns.

Taiwanese company QNAP released an advisory late very last 7 days warning of a critical threat from the DeadBolt variant, which it claimed appeared to be concentrating on buyers running out-of-date variations of QTS 4.x.

“To safe your NAS, we strongly recommend updating QTS or QuTS hero to the most current variation quickly,” it claimed.

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


“If your NAS has already been compromised, acquire the screenshot of the ransom take note to keep the bitcoin tackle, then, upgrade to the most current firmware model and the built-in Malware Remover application will automatically quarantine the ransom observe which hijacks the login web site.”

Individually, security researchers have warned of a resurgent eCh0raix marketing campaign focusing on the same units.

G Knowledge malware analyst, Karsten Hahn, flagged the find on Twitter. According to Virus Overall, the ransomware, also acknowledged as QNAPCrypt, is currently only currently being detected by 28 out of 58 suppliers.

There was no information from QNAP at the time of writing, but this is surely not the first time its products have been specific by both variants.

In point, back again in May possibly, the vendor issued an advisory warning that devices applying weak passwords or out-of-date QTS firmware could be vulnerable to attack.

To stay clear of being compromised, it advised consumers to use more robust passwords for admin accounts allow IP obtain safety to mitigate the risk of brute pressure attacks keep away from making use of ports 443 and 8080 and update QTS and all affiliated applications to the hottest variations.

In the exact thirty day period, QNAP issued a individual advisory warning of an previously DeadBolt campaign. DeadBolt also struck in January this calendar year.

Bud Broomhead, CEO at Viakoo, defined that around 10 out of CISA’s 700+ stated recognised exploited vulnerabilities have an impact on QNAP.

“QNAP products are really interesting to cyber-criminals whose approach is to question a massive number of victims for a smaller total of funds, as opposed to couple victims remaining asked for huge quantities,” he added. 

“The $900 asked for as a ransom is at a stage the place quite a few operators of the units will pick out to spend rather than get their IT or security groups associated, and most likely encounter inside effects for not obtaining thoroughly onboarded and secured the equipment.”


Some parts of this report are sourced from:
www.infosecurity-journal.com

Previous Post: «Cyber Security News Investigators Disrupt Giant RSocks Botnet

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • QNAP Customers Hit by Double Ransomware Blitz
  • Investigators Disrupt Giant RSocks Botnet
  • Google Researchers Detail 5-Year-Old Apple Safari Vulnerability Exploited in the Wild
  • BRATA Android Malware Gains Advanced Mobile Threat Capabilities
  • Over a Dozen Flaws Found in Siemens’ Industrial Network Management System
  • Learn Cybersecurity with Palo Alto Networks Through this PCCSA Course @ 93% OFF
  • Authorities Shut Down Russian RSOCKS Botnet That Hacked Millions of Devices
  • Atlassian Confluence Flaw Being Used to Deploy Ransomware and Crypto Miners
  • Microsoft Addresses Wi-Fi Hotspots Issues in Latest Update
  • US Man Sentenced to Nine Years in Prison for Hacking iCloud Accounts and Stealing Nudes

Copyright © TheCyberSecurity.News, All Rights Reserved.