QNAP Systems is urging its users to check and update their network attached storage (NAS) devices to the latest version to avoid exposure to the Deadbolt ransomware. Users should also avoid exposing their NAS to the Internet, the Taiwan-based NAS maker said in the advisory. The affected models include the TS-x51 series and TSA-x53 series.
QNAP NAS devices have been a frequent target of ransomware groups, including the OLocker and ech0raix ransomware, according to Chris Morgan, Senior Cyber Threat Intelligence Analyst at Digital Shadows. “Much of this activity surrounds the use of Universal Plug and Play (UPnP) protocol, which allows apps and other devices on your network to open and close ports automatically to connect with each other,” he explains. Used for a variety of purposes, UPnP protocol allows the convenience of quickly connecting devices to a network, but at a security cost, Morgan says.