Ransomware - QNAP affected #eCh0raix #Qlocker

Today I would like to mention Ransomware eCh0raix. 

Qnap devices are affected and need firmware updates.

Old QTS and Photo Station versions are affected.

https://www.qnap.com/it-it/security-advisory/qsa-20-02

It should be available on line a decryptor tool too.

Other than firmware upgrade it is highly suggested to use strenght passwords, enablbe NAP (Network Access Procection against brute force attacks, disable SSH and Telnet)

Evaluate Qnap snapshot tool too:

https://www.qnap.com/solution/snapshots/en/

More information are available here:

https://www.tomshw.it/hardware/nas-qnap-sotto-attacco-fate-attenzione/

[update 2021.05.08]

Be aware about qlocker too

https://www.hwupgrade.it/news/sicurezza-software/attenzione-a-qlocker-il-ransomware-che-attacca-i-nas-qnap-e-usa-7-zip-per-bloccare-i-file_97217.html

[update 2022.05.06]

Here they are mention to AFP protocol, that is vulnerable, on QNAP devices

https://www.hwupgrade.it/news/sicurezza-software/qnap-e-synology-nas-a-rischio-vulnerabilita-critiche-in-netatalk-meglio-disattivare-il-protocollo-afp_106728.html