Be aware of QSnatch malware targeting QNAP NAS devices
Last Update Date:
5 Nov 2019 13:23
Release Date:
5 Nov 2019
7113
Views
RISK: High Risk
TYPE: Attacks - Malware
A malware named “QSnatch ” is currently being used to target QNAP NAS devices.
Based on the report from National Cyber Security Centre of Finland (NCSC-FI), after QNAP NAS devices infected by QSnatch, a remote attacker could trigger remote code execution, tampering, sensitive information disclosure and bypass security restriction on the targeted devices.
Impact
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Data Manipulation
System / Technologies affected
- QNAP NAS devices
Solutions
- Update the firmware to the latest version issued by the vendor.
- For other recommendations, please refer to the vendor's security advisory:
Vulnerability Identifier
- No CVE information is available
Source
Related Link
Share with