CISA Alert: Potential Legacy Risk from Malware Targeting QNAP NAS Devices

The U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) has published a new alert about the potential vulnerability of Network Attached Storage Devices (NAS) manufactured by the firm QNAP to the QSnatch malware if not updated with the latest security fixes. According to CISA, the malware has infected thousands of devices worldwide with a particularly high number of infections in North America and Europe. Further, once a device has been infected, attackers can prevent administrators from successfully running firmware updates. CISA notes that it has been investigating QSnatch with its British counterpart, the National Cyber Security Centre (NCSC), adding that they identified two campaigns of activity for the malware. While neither campaign is currently active, CISA emphasizes the threat remains to unpatched devices. The alert also provides technical details of the malware and mitigation advice. Read the alert at CISA.