1 min read

AgeLocker Ransomware Is Actively Targeting NAS Owners, QNAP Warns

Silviu STAHIE

September 29, 2020

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
AgeLocker Ransomware Is Actively Targeting NAS Owners, QNAP Warns

QNAP is warning customers of a ransomware campaign that targets Network Attached Storage (NAS) users with older versions of QTS, a Linux-based operating system deployed by the company with its products.

AgeLocker is ransomware that directly targets QNAP customers by infecting their NAS hardware. Following an investigation, the company determined that the latest version of QTS has no known vulnerabilities that would let attackers deploy the malware with ease.

The most likely scenario is that some people continue to use older, unpatched QTS versions, giving threat actors a way in. Because the company is still trying to determine the exact route the infection takes, it can only recommend users upgrade their systems as soon as possible and follow best practices.

“Since unpatched devices are prone to information security threats, QNAP urges all users to update their device OS and apps to the latest version available,” said QNAP in a blog post. “Users should also follow good information security practices such as using strong passwords and installing the Malware Remover app on their NAS. These will make the device harder to be breached, thus enhancing data security.”

User reports indicate AgeLocker only targets QNAP NAS, Linux and macOS devices. The developers found evidence that many earlier versions of Photo Station are also susceptible to attack.

Two months ago, another malware, named QSnatch, affected QNAP systems, allowing attackers to steal credentials via a CGI password logger, scrape credentials, and provide attackers with a SSH backdoor and more. The company has a similar problem as then, when they couldn’t determine the infection vector.

QNAP asked customers to keep Malware Remover at the latest version, upgrade the operating system, and change all credentials.

tags


Author



Right now

Top posts

Scam alert: Cybercrooks use shady investment domain to scam keen investors out of money and data

Scam alert: Cybercrooks use shady investment domain to scam keen investors out of money and data

May 24, 2022

3 min read
John Oliver Shows the Dark Side of Data Brokerage on Last Week Tonight

John Oliver Shows the Dark Side of Data Brokerage on Last Week Tonight

April 15, 2022

3 min read
Bitdefender Labs Warns of Phishing Scams Targeting MetaMask Users

Bitdefender Labs Warns of Phishing Scams Targeting MetaMask Users

April 14, 2022

3 min read
Why and how to hide your IP address while traveling

Why and how to hide your IP address while traveling

April 13, 2022

2 min read
How Bitdefender Can Help Restore Your Privacy in the Digital Age

How Bitdefender Can Help Restore Your Privacy in the Digital Age

April 04, 2022

3 min read
How Strong is VPN Encryption?

How Strong is VPN Encryption?

February 28, 2022

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Blockchain Company Horizon Offers Hacker $1 Million to Return $100 Million in Stolen ETH Crypto Blockchain Company Horizon Offers Hacker $1 Million to Return $100 Million in Stolen ETH Crypto
Silviu STAHIE

June 27, 2022

1 min read
Criminals Force Victim to Unlock Phone in Hope of Cryptocurrency Jackpot Criminals Force Victim to Unlock Phone in Hope of Cryptocurrency Jackpot
Radu CRAHMALIUC

June 27, 2022

2 min read
Capital One Hacker Found Guilty of Wire Fraud, Faces More than 20 Years in Prison Capital One Hacker Found Guilty of Wire Fraud, Faces More than 20 Years in Prison
Silviu STAHIE

June 22, 2022

1 min read