QNAP devices are being hacked to mine cryptocurrency
Company urges users to keep NAS devices updated
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
Crypto miningmalwarehas once again targetedNetwork-Attached Storage (NAS)devices of popular Taiwanese storage manufacturer QNAP.
The new malware, discovered by researchers at Qihoo 360’s Network Security Research Lab (360 Netlab), is exploiting an already-patched remote code execution (RCE) vulnerability, which allowed attackers to break into the device and use it for maliciouscrypto miningtasks.
“According to the vendor’s request, we are not disclosing the technical details of the vulnerability in order to protect QNAPNASusers, [and] we speculate that there are still hundreds of thousands of online QNAP NAS devices with the vulnerability,” 360 Netlab noted in its report.
Unpatched targets
The researchers first noticed reports of the campaign in the beginning of March, quickly realising that what they dubbed UnityMiner could potentially infect all QNAP NAS devices running firmware versions that have not been patched since August 2020.
Despite a fix being available for over six months, the researchers discovered over 4.2 million NAS devices all over the world that can be potentially exploited by the malware.
Commenting on the workings of the malware, the researchers note that “the attacker customized the program by hiding the mining process and the realCPUmemory resource usage information, so when the QNAP users check the system usage via the WEB management interface, they cannot see the abnormal system behavior.”
QNAP and the researchers have advised users to immediately update the firmware on their devices to thwart the attacks.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Via:BleepingComputer
With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’sTechRadar Pro’sexpert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.
Phishing attacks surge in 2024 as cybercriminals adopt AI tools and multi-channel tactics
This new phishing strategy utilizes GitHub comments to distribute malware
Arcane season 2 finally gave us the huge Caitlyn and Vi moment we’ve been waiting for – and its creators say ‘we couldn’t have done it in season one’
