Taiwanese storage software and hardware vendor QNAP released a security advisory urging customers to take steps to secure their devices against DeadBolt ransomware attacks.
“QNAP Systems, Inc. recently detected a new attack by the DEADBOLT Ransomware. According to the investigation by the QNAP Product Security Incident Response Team (QNAP PSIRT), the attack targeted NAS devices using QTS 4.3.6 and QTS 4.4.1, and the affected models were mainly TS-x51 series and TS-x53 series,” the NAS maker wrote.
The company asked all NAS users to check and update QTS to the latest version as soon as possible, and avoid exposing their NAS to the Internet.
Last week, the cybersecurity firm Trend Micro released a report that sheds some light on the inner workings of the DeadBolt ransomware family known for a slew of attacks that targeted Network-Attached Storage (NAS) devices developed by QNAP Systems and Asustor. According to the researchers, the group behind DeadBolt leverages multitiered extortion scheme aimed at both the vendors and their victims, providing multiple cryptocurrency payment options.
In addition to DeadBolt, BleepingComputer reports of a surge in eCh0raix ransomware attacks targeting QNAP NAS devices.
“A new surge of ech0raix attacks has now been confirmed by a quickly increasing number of ID Ransomware submissions and users reporting being hit in the BleepingComputer forums, with the earliest hit recorded on June 8,” the tech news site wrote.
While only a few dozen ech0raix samples have been submitted to the ID Ransomware service, the number of infections may be much higher.
QNAP has yet to release a security advisory regarding the issue, so the infection vector currently remains unknown.