Blog

QNAP Still Dealing With Attacks On NAS Devices

Dec 24, 2021 | Blog

QNAP has recently warned its customers of an ongoing campaign that is targeting QNAP NAS (Network Attached Storage) devices and infecting them with cryptomining malware.  This particular campaign is deploying software designed to mine Bitcoin and using your computing power to generate profits for them.  If you are infected, you’ll see a new process running on your system named “OOM_Reaper.”

While it’s certainly not the direst threat you can face the malware will utilize up to 50 percent of your system’s processing power while mimicking a kernel process with a PID higher than 1000.

If you find that you are already infected, here are the steps the company recommends taking to rid yourself of the malware:

  • Update QTS or QuTS hero to the latest version.
  • Install and update Malware Remover to the latest version.
  • Use stronger passwords for your administrator and other user accounts.
  • Update all installed applications to their latest versions.
  • Do not expose your NAS to the internet, or avoid using default system port numbers 443 and 8080.

The company has really been struggling this year  as they have been targeted by an unusual surge in attacks against them and the equipment they sell.  In January QNAP urged their users to defend themselves from a nasty malware attack that rendered their NAS devices unusable after spawning rogue processes that would soak up most of the target system’s processing power. Then in March the company faced a similar cryptomining campaign which installed a miner called UnityMiner.

Before that beginning in May of 2019 and continuing intermittently until June of 2020 QNAP users faced a spate of eChoraix ransomware attacks which came to also be known as QNAPCrypt.

All that to say that if you’re a QNAP customer you’re probably already familiar with threats on the landscape. If you’re not doing so already be sure to head to the company’s website and review their FAQ page which lists current best practices relating to security.

FBI Program Tasked with Infrastructure Security Compromised

FBI Program Tasked with Infrastructure Security Compromised

The FBI program tasked with ensuring critical infrastructure security has been compromised by hackers, who now offer access to the program's data on the dark web. The breach was initially disclosed by Brian Krebs of Krebs on Security, who claims that the data was for...

Streamline Your Business with the Latest Smart Home Technology

Streamline Your Business with the Latest Smart Home Technology

Are you a business owner looking to get the most out of your Google smart home devices? If so, you're in luck! Google has enabled its Nest products and Android OS with the initial rollout of the Matter smart home standard. This means that businesses now have the...

Data Breach at Sequoia One Exposes Sensitive Customer Information

Data Breach at Sequoia One Exposes Sensitive Customer Information

What do you do when your most personal information has been compromised? This is likely the question that customers of Sequoia One asked themselves earlier this month as they were informed that the company had been hacked. Sequoia One specializes in the management of...

Cisco Reports Critical IP Phone Vulnerability

Cisco Reports Critical IP Phone Vulnerability

As a business owner, it's important to stay informed about potential vulnerabilities that could impact your organization. Recently, Cisco reported a critical vulnerability, tracked as CVE-2022-20968, affecting its IP Phone 7800 and 8800 Series. This new vulnerability...

Google Chrome Releases Two New Features

Google Chrome Releases Two New Features

Google Chrome is one of the more commonly used web browsers. Over the years, though, Chrome has gained a reputation for utilizing a large portion of a computer's memory. This can be a problem if you're running other resource-intensive tasks and don't want to slow...

Get a Free Consultation

 

Fill out the form below to receive a free consultation and learn how we can make your technology worry-free!

 

Contact Information

  • 39301 Badger Street, Suite 500
    Palm Desert, CA 9221
  • (760) 333-8523
  • info@icn.tech