SecurityWeek reports that QNAP network-attached storage devices are being targeted by a new wave of Deadbolt ransomware attacks, which were initially discovered on Saturday.
"QNAP Systems, Inc. today detected the security threat Deadbolt leveraging exploitation of Photo Station vulnerability to encrypt QNAP NAS that are directly connected to the internet," said QNAP, which has already issued patches in Photo Station versions 5.2.14, 5.4.15, 5.7.18, 6.0.22, and 6.1.2. QNAP also recommended the use of QuMagie for photo management instead of Photo Station.
Moreover, users have been discouraged from directly connecting their NAS devices to the internet to curb attack risk.
"We recommend users to make use of the myQNAPcloud Link feature provided by QNAP, or enable the VPN service. This can effectively harden the NAS and decrease the chance of being attacked," said QNAP, which urged the immediate application of provided updates, as well as the use of robust passwords and data backups.
Significant concerns have been raised by cybersecurity experts over the leak of the LockBit 3.0 ransomware encryptor, which could be leveraged by other threat groups to create their own operations, reports The Record, a news site by cybersecurity firm Recorded Future.