Security News

QNAP caught napping as disclosure delay expires, critical NAS bugs revealed
2021-04-02 23:07

Some QNAP network attached storage devices are vulnerable to attack because of two critical vulnerabilities, one that enables unauthenticated remote code execution and another that provides the ability to write to arbitrary files. On Thursday QNAP released TS-231 firmware version 4.3.6.1620, which addresses a command injection vulnerability and a vulnerability in Apache HTTP server.

Legacy QNAP NAS Devices Vulnerable to Zero-Day Attack
2021-04-01 19:53

Two critical zero-day bugs affect legacy QNAP Systems storage hardware, and expose devices to remote unauthenticated attackers. A patch for the now-retired QNAP model TS-231 NAS device, first released in 2015, is scheduled to be released within weeks, QNAP representatives told Threatpost.

Unpatched RCE Flaws Affect Tens of Thousands of QNAP SOHO NAS Devices
2021-04-01 19:38

A pair of unpatched vulnerabilities in QNAP small office/home office network attached storage devices could allow attackers to execute code remotely, according to a warning from security researchers at SAM Seamless Network. The bugs were found to affect QNAP TS-231 SOHO NAS devices running firmware version 4.3.6.1446, but potentially impact other QNAP devices as well, provided they use the same firmware release.

QNAP Urges Users to Secure Devices Against Brute-Force Attacks
2021-03-26 14:55

Network-attached storage appliance manufacturer QNAP Systems this week published an alert urging users to take the necessary steps to secure their devices against brute-force attacks. This week's alert, the company underlines, has been published after a growing number of users reported that their devices have been targeted in brute-force attacks.

QNAP warns of ongoing brute-force attacks against NAS devices
2021-03-25 14:58

QNAP warns customers of ongoing attacks targeting QNAP NAS devices and urges them to enhance their security as soon as possible. In these attacks, the threat actors use automated tools to login into Internet-exposed NAS devices using passwords generated on the spot or from lists of previously compromised credentials.

Crypto-Miner Campaign Targets Unpatched QNAP NAS Devices
2021-03-08 21:16

UPDATE. Owners of popular QNAP Systems network attached storage devices are being warned that a malicious cryptocurrency campaign is actively exploiting two critical firmware bugs in systems that have not yet been patched. QNAP fixed the flaws in October 2020; however, researchers at Qihoo 360's Network Security Research Lab report a widening campaign targeting over 100 models used by 4.3 million of the company's NAS devices.

Unpatched QNAP devices are being hacked to mine cryptocurrency
2021-03-08 13:55

Unpatched network-attached storage devices are targeted in ongoing attacks where the attackers try to take them over and install cryptominer malware to mine for cryptocurrency. All NAS devices with QNAP firmware released before August 2020 are currently vulnerable to these attacks.

QNAP patches critical vulnerability in Surveillance Station NAS app
2021-02-17 13:58

QNAP has addressed a critical security vulnerability in the Surveillance Station app that allows attackers to execute malicious code remotely on network-attached storage devices running the vulnerable software. Surveillance Station is QNAP's network surveillance Video Management System, a software solution that can help users manage and monitor up to 12 IP cameras.

QNAP Warns NAS Users of 'dovecat' Malware Attacks
2021-01-22 13:28

QNAP this week warned users of attacks targeting QNAP NAS devices with a piece of malware named "Dovecat." The cybercriminals behind dovecat, QNAP explains, are installing Bitcoin miners on the compromised NAS devices, without user consent.

QNAP warns users to secure NAS devices against Dovecat malware
2021-01-21 10:20

QNAP urges customers to secure their network-attached storage devices against an ongoing malware campaign that infects and exploits them to mine bitcoin without their knowledge. QNAP also published a knowledgebase article in November explaining that NAS devices with dovecat and dedpma running processes are compromised and running a Bitcoin miner malware.