Skip to main content

New Ransomware Targeting NAS Storage Company Devices

By October 9, 2020May 5th, 2022Cybersecurity

Does your business rely on QNAP NAS storage devices?

If so, be aware that the company recently issued an advisory, stating that an unknown group of hackers has begun targeting them specifically with ransomware attacks.

The advisory reads, in part, as follows:

“QNAP Product Security Incident Response Team (PSIRT) has found evidence that the ransomware may attack earlier versions of Photo Station. We are thoroughly investigating the case and will release more information as soon as possible.”

If you’re not familiar with it, Photo Station is an app that allows users to upload photos to their NAS device and then view them remotely. Unfortunately, even if you don’t use the app, hackers can still exploit it, and the fact that it’s not something you use regularly (or at all) means that it might not be on your radar of things to keep up to date.

The good news is that an update is available. Although since the app is built into the device, it’s not a typical software update, but rather, an update to the firmware.

To update to the latest version and save yourself from potential attack, simply follow these steps:

  • Log onto QTS as an Administrator
  • Go to Control Panel, then System, and finally to Firmware Update
  • You’ll see an option labelled “Live Update” and in that tab, a button marked “Check for Update”

Just click that button and the system will do the rest.

If you don’t want to do it that way, you can update your firmware manually by going to Support and Download Center from the company’s website, selecting the file to install based on the specific device you have.

Finally, to update all the apps on your QNAP devices, simply log on as an Administrator, go to your App Center, select “My Apps” and install all updates.

Again, this is something you may not even use, but the fact that it exists on the devices you rely on gives hackers an in, whether you’re actively using it or not. Be sure to update right away, just to be safe.

Chris Forte

Chris Forte, President and CEO of Olmec Systems, has been in the MSP workspace for the past 25 years. Chris earned his Master’s Degree from West Virginia University, graduating Magna Cum Laude. He was a past member of the Entrepreneurs’ Organization, a current member of the New Jersey Power Partners and Executive Association of New Jersey, where he has previously served on its board of directors. In his spare time, Chris enjoys traveling with his family. He also admits to being a struggling golfer and avid watcher of college football and basketball. He currently lives in Boonton Township, NJ with his wife, two daughters, son, and black lab Luna.