Ransomware targeting QNAP NAS drives – UPDATED

Network Attached Storage, or NAS devices are still a popular storage solution for organisations, even if they also use other cloud solutions. Octagon Technology still uses NAS devices as part of our disaster recovery/incident response planning.

The use and reach across an organisation’s network that NAS devices have, make them an obvious target for threat actors. Here is a report on DeadBolt ransomware targeting QNAP NAS devices – do not forget to run the patches.

DeadBolt ransomware takes another shot at QNAP storage • The Register

Here is the latest on the vulnerability from Bleeping Computers:

Critical PHP flaw exposes QNAP NAS devices to RCE attacks (bleepingcomputer.com)

Further Reading

QNAP investigating new Deadbolt ransomware campaign – The Record by Recorded Future

My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.

patch now 200