Tech

QNAP Fights Another DeadBolt Ransomware Campaign, Releases Patch for NAS Devices

September 7, 2022

Hot potato: The threat of DeadBolt is rising again and QNAP is the doomed victim of this multiple ransomware infection. Users should install the newly released software fix as soon as possible – it is also recommended to avoid using NAS devices connected directly to the Internet, instead you should add a firewall or other form of security layer if you want to access files remotely.

Network Attached Storage (NAS) devices built by QNAP are being hit by another ransomware campaign by the DeadBolt gang. The malicious campaign began over the weekend and is still ongoing.

This new DeadBolt attack targets a zero-day vulnerability in QNAP Photo Station, a photo management software solution that offers private cloud photo storage, but unfortunately in this case it has opened a window for attackers. Campaign was identified on weekends and is rated as “critical”.

QNAP now offers advice on how to avoid these kinds of security threats and software patch to remedy the situation (if you are not already infected)…

According to QNAP, the vulnerability allows DeadBolt ransomware to encrypt files stored on NAS devices that are directly connected to the Internet (such as those assigned a public IP address). According to QNAP, the situation has been assessed and a patch has been released for the faulty software within 12 hours, and users are now strongly advised to install the following updates to fix the dangerous security hole:

QTS 5.0.1: Photo Station 6.1.2 and later
QTS 5.0.0/4.5.x: Photo Station 6.0.22 or later
QTS 4.3.6: Photo Station 5.7.18 and later
QTS 4.3.3: Photo Station 5.4.15 and later
QTS 4.2.6: Photo Station 5.2.14 and later

QNAP devices have become regular targets of other malware campaigns since the beginning of the year. This time, the Taiwanese storage company goes even further, advising customers to completely replace Photo Station with a competing solution such as KuMagiand stating that NAS devices should not connect directly to the Internet to improve the overall security of the device.

For remote file access, QNAP recommends using myQNAPcloud feature or turn on an enabled VPN service. In this way, QNAP claims, security will be effectively enhanced, and the likelihood of an attack will be significantly reduced.

Source link

September 7, 2022

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

QNAP Fights Another DeadBolt Ransomware Campaign, Releases Patch for NAS Devices

Leave a Reply Cancel reply

Netflix will let you use your iPhone as a game controller

Samsung Galaxy S24 Series Key Specs Suggested, Ultra Model May Get 144Hz Refresh Rate Display

OnePlus Nord CE 3 Lite confirmed to feature 108MP main rear camera: all the details

WWDC 2023 Scheduled for June 5-9: What to Expect

Indie developer Headcannon confirms he helped Sega update Sonic Origins Plus