"US, UK Warn of Malware Targeting QNAP NAS Devices"

An alert issued by the United States Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom's National Cyber Security Centre (NCSC) warns of the infection of more than 62,000 QNAP network-attached storage (NAS) devices by a piece of malware, called QSnatch. The malware was first discovered last year and was observed to be capable of harvesting confidential information, such as login credentials and system configuration, from compromised QNAP devices. According to the joint alert from CISA and NCSC, all NAS devices from QNAP may be vulnerable to QSnatch. The alert states that the malware has infected thousands of devices, mostly in North America and Europe. Attackers can prevent administrators from successfully activating firmware updates through the infection of a QNAP NAS device. The two agencies identified two QSnatch campaigns, one of which ran between 2014 and 2017, and the other between late 2018 and late 2019. Users are advised to apply the newest security patches to avoid this threat. This article continues to discuss the impact and capabilities of the QSnatch malware, and how recommendations for organizations on how to protect against this malware.

Security Week reports "US, UK Warn of Malware Targeting QNAP NAS Devices"