Prolific Ransomware Group Targeting NAS Devices To Extort Vendors - Information Security Buzz

1 year ago 59

It has been reported that a prolific ransomware radical targeting network-attached retention (NAS) devices this twelvemonth monetizes its efforts by extorting some vendors and their extremity customers, according to a caller report. Group –IB’s study, Deadbolt ransomware: thing but NASty, is based connected its investigation of a illustration of the malware, which archetypal appeared astatine the commencement of the year. In an ongoing campaign, it has targeted NAS devices from Taiwanese vendor QNAP belonging to SMBs, schools, idiosyncratic location users and others utilizing zero-day vulnerabilities arsenic an archetypal access/attack vector.

Inline Feedbacks

View each comments

InfoSec Expert

October 24, 2022 10:15 am

NAS devices from a assortment of manufacturers person been plagued by vulnerabilities successful caller years, ranging from Western Digital to QNAP and Seagate to Synology. NAS devices are particularly susceptible if they don’t automatically update to person the latest information patches. And due to the fact that NAS devices are often utilized for storing important files and backing up delicate data, they are lucrative targets. Many tiny organizations usage NAS for retention and record sharing, for example. They are often a “set it and hide it” technology, meaning breaches and malware infections tin spell connected for months without the idiosyncratic noticing. Unfortunately, determination are precise fewer NAS brands with cleanable cybersecurity way records. The lone mode to debar vulnerabilities being exploited mightiness beryllium to disconnect the NAS instrumentality from the internet, which defeats the intent of owning one.

Last edited 2 minutes agone by Paul Bischoff

Read Entire Article