Stay safe out there !
“Ransomware named DeadBolt found an exploit in storage devices, encrypting all files. They ask $1,000 from individuals or $1.8 million from QNAP”
Source
https://twitter.com/lexfridman/status/1486609372176429057
3 Likes
https://thehackernews.com/2022/01/qnap-warns-of-deadbolt-ransomware.html
A little more detail above:
In addition, QNAP is also urging users to check if their NAS devices are public-facing, and if so, take steps to turn off the port forwarding function of the router and disable the Universal Plug and Play UPnP function of the QNAP NAS.
3 Likes
Run with no ports open to QNAP. VPN only. Turn off upnp on the router.
turn off all qnap services that are unused (qnap cloud, helpdesk). Also make sure everything in your autoupdate section is unchecked. Even having ‘recommended update’ checked supposidly caused the system to forcefully upgrade, even while connected to iSCSI LUNs. Curious if anyone here got hit with that. I had already upgraded to 5.x on a system and have all autoupdate functions disabled already, so didn’t get impacted.
Already planning on slowly moving to a self built TrueNAS scale system in the long term. QNAP will move to a more archival purpose only.
2 Likes