Taiwanese firm QNAP Units has alerted consumers to ongoing DeadBolt ransomware attacks that started on Saturday.
For every reports, the attack’s backdoor was a vulnerability in the firm’s personal cloud storage for photos named Picture Station.
“QNAP Devices, Inc. these days detected the security risk DEADBOLT leveraging exploitation of Image Station vulnerability to encrypt QNAP NAS that are right linked to the Internet,” reads the firm’s security notice.
Since the starting of the year, the DeadBolt ransomware group has been targeting NAS units applying an alleged zero-working day vulnerability on Internet-uncovered products.
In response to the latest attack, QNAP’s solution security incident reaction crew (PSIRT) launched a patched Photograph Station app, urging QNAP NAS consumers to update to the most recent version.
The security updates came 12 hours just after DeadBolt started utilizing the zero-day vulnerability in its attacks. To be certain continued providers, QNAP also suggested people switch their Picture Station app with QuMagie, a safer image storage management tool for QNAP NAS products.
Also, the agency suggested customers to keep away from connecting their QNAP NAS equipment to the internet as a precaution.
“We recommend buyers to make use of the myQNAPcloud Website link feature supplied by QNAP, or help the VPN service. This can properly harden the NAS and reduce the opportunity of being attacked,” mentioned QNAP in a statement.
Some parts of this write-up are sourced from: