1 min read

AgeLocker Ransomware Is Actively Targeting NAS Owners, QNAP Warns

Silviu STAHIE

September 29, 2020

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
AgeLocker Ransomware Is Actively Targeting NAS Owners, QNAP Warns

QNAP is warning customers of a ransomware campaign that targets Network Attached Storage (NAS) users with older versions of QTS, a Linux-based operating system deployed by the company with its products.

AgeLocker is ransomware that directly targets QNAP customers by infecting their NAS hardware. Following an investigation, the company determined that the latest version of QTS has no known vulnerabilities that would let attackers deploy the malware with ease.

The most likely scenario is that some people continue to use older, unpatched QTS versions, giving threat actors a way in. Because the company is still trying to determine the exact route the infection takes, it can only recommend users upgrade their systems as soon as possible and follow best practices.

“Since unpatched devices are prone to information security threats, QNAP urges all users to update their device OS and apps to the latest version available,” said QNAP in a blog post. “Users should also follow good information security practices such as using strong passwords and installing the Malware Remover app on their NAS. These will make the device harder to be breached, thus enhancing data security.”

User reports indicate AgeLocker only targets QNAP NAS, Linux and macOS devices. The developers found evidence that many earlier versions of Photo Station are also susceptible to attack.

Two months ago, another malware, named QSnatch, affected QNAP systems, allowing attackers to steal credentials via a CGI password logger, scrape credentials, and provide attackers with a SSH backdoor and more. The company has a similar problem as then, when they couldn’t determine the infection vector.

QNAP asked customers to keep Malware Remover at the latest version, upgrade the operating system, and change all credentials.

tags


Author



Right now

Top posts

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

January 26, 2023

2 min read
Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

January 19, 2023

4 min read
Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

November 29, 2022

2 min read
How to monitor your online privacy during your Thanksgiving trip

How to monitor your online privacy during your Thanksgiving trip

November 22, 2022

3 min read
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

November 16, 2022

6 min read
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

November 14, 2022

5 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Meta Pays Out Bounties for Account Takeover and Two-Factor Authentication Bypass Exploits Meta Pays Out Bounties for Account Takeover and Two-Factor Authentication Bypass Exploits
Silviu STAHIE

January 31, 2023

1 min read
Hackers steal 10 million customer details from JD Sports Hackers steal 10 million customer details from JD Sports
Graham CLULEY

January 30, 2023

2 min read
North Korean Hackers Tried to Launder $100 Million in Crypto Stolen in 2022 North Korean Hackers Tried to Launder $100 Million in Crypto Stolen in 2022
Silviu STAHIE

January 25, 2023

1 min read