Be aware of QSnatch malware targeting QNAP NAS devices
RISK: High Risk
TYPE: Attacks - Malware
A malware named “QSnatch ” is currently being used to target QNAP NAS devices.
Based on the report from National Cyber Security Centre of Finland (NCSC-FI), after QNAP NAS devices infected by QSnatch, a remote attacker could trigger remote code execution, tampering, sensitive information disclosure and bypass security restriction on the targeted devices.
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Data Manipulation
System / Technologies affected
- QNAP NAS devices
- Update the firmware to the latest version issued by the vendor.
- For other recommendations, please refer to the vendor's security advisory:
- No CVE information is available