#International_Tech_News | #Big_Tech
NEW WAVE of #DATA_DESTROYING #RANSOMWARE_ATTACKS hits #QNAP_NAS devices
#Network_hardware-maker QNAP is urging customers to update their network-attached #storage_devices immediately to protect them from a new wave of ongoing ransomware attacks that can destroy #terabytes of data in a single stroke.
#Singapore_based QNAP said recently that it has identified a new campaign from a ransomware group known as #DeadBolt. The attacks take aim at QNAP NAS devices that use a proprietary feature known as Photo Station. The advisory instructs customers to update their firmware, suggesting there is a vulnerability that’s under exploit, but the company makes no explicit mention of a CVE designation that security professionals use to track such security flaws.
“To protect your NAS from the DeadBolt ransomware, QNAP strongly recommends securing your QNAP NAS devices and routers by following these instructions,” company officials wrote:
Disable the port forwarding function on the router
Set up #myQNAPcloud on the NAS to enable secure remote access and prevent exposure to the Internet
Update the #NAS firmware to the latest version
Update all applications on the NAS to their latest versions
Apply strong passwords for all user accounts on the NAS
Take #snapshots and back up regularly to protect your data
The advisory applies to the following devices:
QTS 5.0.1: Photo Station 6.1.2 and later
QTS 5.0.0/4.5.x: Photo Station 6.0.22 and later
QTS 4.3.6: Photo Station 5.7.18 and later
QTS 4.3.3: Photo Station 5.4.15 and later
QTS 4.2.6: Photo Station 5.2.14 and later
DeadBolt first appeared in January, and within a few months, Internet security scanning service #Censys said the ransomware had infected thousands of QNAP devices. The company took the unusual step of automatically pushing the update to all devices, even those that had automatic updating turned off.
Now, DeadBolt is back. Users first learn of the infection in ransom notes like this one:
Disclaimer: https://tastingtraffic.net (Decentralized SOCIAL Network) and/or its owners [http://tastingtraffic.com] are not affiliates of this provider or referenced image used. This is NOT an endorsement OR Sponsored (Paid) Promotion/Reshare.