Guru3D.com
  • HOME
  • NEWS
    • Channels
    • Archive
  • DOWNLOADS
    • New Downloads
    • Categories
    • Archive
  • GAME REVIEWS
  • ARTICLES
    • Rig of the Month
    • Join ROTM
    • PC Buyers Guide
    • Guru3D VGA Charts
    • Editorials
    • Dated content
  • HARDWARE REVIEWS
    • Videocards
    • Processors
    • Audio
    • Motherboards
    • Memory and Flash
    • SSD Storage
    • Chassis
    • Media Players
    • Power Supply
    • Laptop and Mobile
    • Smartphone
    • Networking
    • Keyboard Mouse
    • Cooling
    • Search articles
    • Knowledgebase
    • More Categories
  • FORUMS
  • NEWSLETTER
  • CONTACT

New Reviews
ASUS ROG Rapture GT-AXE11000 WIFI6E router review
Backforce One Plus Gaming Chair review
ASUS GeForce RTX 3080 Noctua OC review
AMD Ryzen 5 5600 review
PowerColor RX 6650 XT Hellhound White review
FSP Hydro PTM Pro (1200W PSU) review
ASUS ROG Radeon RX 6750 XT STRIX review
AMD FidelityFX Super Resolution 2.0 - preview
Sapphire Radeon RX 6650 XT Nitro+ review
Sapphire Radeon RX 6950 XT Sapphire Nitro+ Pure review

New Downloads
Corsair Utility Engine Download (iCUE) Download v4.24.193
Intel HD graphics Driver Download Version: 30.0.101.1994
GeForce 512.95 WHQL driver download
AMD Radeon Software Adrenalin 22.5.2 driver download
AIDA64 Download Version 6.70
FurMark Download v1.30
Display Driver Uninstaller Download version 18.0.5.1
Download Samsung Magician v7.1.1.820
Intel ARC graphics Driver Download Version: 30.0.101.1732
HWiNFO Download v7.24


New Forum Topics
[3rd-Party Driver] Amernime Zone Radeon Insight 22.5.1 WHQL Driver Pack (Released) NVIDIA Re-Enables LHR On Its Graphics Cards With New Driver Nvidia Shadercache setting. Netflix 4k windows 11 broken Rumor: Intel Raptor Lake and Sapphire Rapids processors will be available in October AMD Radeon Software Adrenalin 22.5.2 driver download and discussion Review: ASUS ROG Rapture GT-AXE11000 WIFI6E router RadeonMod (Tweak Utility) Free to grab: Bioshock: The Collection at Epic Games Store Need input on this gpu?




Guru3D.com » News » QNAP NAS systems vulnerable to new ransomware

QNAP NAS systems vulnerable to new ransomware

by Hilbert Hagedoorn on: 01/26/2022 07:28 PM | source: qnap | 8 comment(s)
QNAP NAS systems vulnerable to new ransomware

A new ransomware variant is spreading and the second one in a short timeframe for QNAP. It encrypts QNAP NAS servers in return for a payment in bitcoin to decrypt them. The ransomware makes use of a zero-day vulnerability that allows it to bypass two-factor authentication.

The attacks began January 26th reports bleeping computer, when QNAP devices discovered their data had been encrypted and their file names had been prefixed with a.deadbolt file suffix. Rather than placing ransom notes in each folder on the device, the QNAP device's login page is hijacked to display a message that reads, "WARNING: Your data have been encrypted by DeadBolt," as illustrated in the image below. This screen instructs the victim to send 0.03 bitcoins (about $1,100) to an enclosed Bitcoin address that is unique to each victim.

Basically QNAP want you to disable passing data over the web by closing all ports on the WAN side.

Taipei, Taiwan, January 26, 2022 - QNAP® Systems, Inc. (QNAP) today issued a statement in response to a new type of ransomware named DeadBolt. DeadBolt has been widely targeting all NAS exposed to the Internet without any protection and encrypting users’ data for Bitcoin ransom. QNAP urges all QNAP NAS users to follow the security setting instructions below to ensure the security of QNAP NAS and routers, and immediately update QTS to the latest available version.

Check whether your NAS is exposed to the Internet
Open the Security Counselor on your QNAP NAS. Your NAS is exposed to the Internet and at high risk if there shows “The System Administration service can be directly accessible from an external IP address via the following protocols: HTTP” on the dashboard. If your NAS is exposed to the Internet, please follow the instructions below to ensure NAS security:

Step 1: Disable the Port Forwarding function of the router
Go to the management interface of your router, check the Virtual Server, NAT or Port Forwarding settings, and disable the port forwarding setting of NAS management service port (port 8080 and 443 by default).

Step 2: Disable the UPnP function of the QNAP NAS
Go to myQNAPcloud on the QTS menu, click the “Auto Router Configuration”, and unselect "Enable UPnP Port forwarding".



QNAP NAS systems vulnerable to new ransomware




« Review: Gigabyte RTX 3050 Gaming OC · QNAP NAS systems vulnerable to new ransomware · Rambus Announces the PCIe 6.0 Controller Design for Next-Generation Data Centers »

Related Stories

Malware Spreading Through Linksys, Netgear, TP-Link routers and QNAP NAS - 05/23/2018 06:39 PM
There is a report going viral at the moment, a new aggressive malware dubbed VPNFilter is spreading rapidly. Cisco is spreading the news that already over half a million devices in at least 54 countr...

QNAP DJ2 Live Enables 4K Live Streaming through QNAP NAS - 05/02/2017 08:33 AM
QNAP released DJ2 Live, a live-streaming app for QNAP NAS that can broadcast in 4K and directly save recorded footage to the NAS for future usage. DJ2 Live is the perfect tool for businesses and organ...

QNAP NAS vulnerabilities not patched after almost a year - 01/18/2017 10:46 AM
F-Secure reports that three vulnerabilities QNAP NAS systems have not been patched almost a year after they were reported. These vulnerabilities can provide an attacker full control over the device an...

AMD G-Series SoC To Accelerate New QNAP NAS Systems - 01/05/2015 10:16 PM
AMD today announced that the AMD Embedded G-Series system-on-chip (SoC) will be powering the new TVS-863+ and the TVS-x63 platform from QNAP, a leading provider of network attached storage (NAS) syste...

Update your QNAP NAS Server - 10/03/2014 09:14 AM
If you have not done so and got one, please update your QNAP NAS server with A) the latest firmware, and then B) Patch it with QFix 1.0.1, most if not all QNAP servers are vunerable to the GNU Bash V...


2 pages 1 2


anticupidon



Posts: 6753
Joined: 2008-03-06

#5987180 Posted on: 01/27/2022 12:20 AM
For some time, I keep hearing about Qnap being on the hot seat.

Astyanax
Senior Member



Posts: 13302
Joined: 2018-03-21

#5987228 Posted on: 01/27/2022 05:42 AM
don't let your nas reach the web, problem solved.

Sylwester Zarębski
Member



Posts: 23
Joined: 2020-03-23

#5987269 Posted on: 01/27/2022 09:21 AM
Prefixed with suffix? Just prefixed or suffixed.

Kaarme
Senior Member



Posts: 2903
Joined: 2013-03-10

#5987283 Posted on: 01/27/2022 10:01 AM
The Taiwanese police would be wise to have a careful look at the Qnap employees.

heffeque
Senior Member



Posts: 4194
Joined: 2003-03-03

#5988538 Posted on: 01/31/2022 10:40 PM
For some time, I keep hearing about Qnap being on the hot seat.

Yup, Synology for now seems to be fairly OK for now (on updated systems).

don't let your nas reach the web, problem solved.

Not an option for people who actually want to take full advantage of some of the NAS's capabilities.

2 pages 1 2


Post New Comment
Click here to post a comment for this news story on the message forum.


Guru3D.com © 2022