QNAP is a popular manufacturer of Network Attached Storage (NAS) devices that provides storage solutions for personal home users as well as enterprise solutions. The company is now urging customers to secure their devices against Dovecat malware that infects and exploits the devices to mine Bitcoin. Users have reported that this malware campaign has been active for about three months, with some customers stating that once infected, their devices have been rendered all but unusable. Synology, another NAS provider, has not yet issued an advisory but some of their customers are reporting similar problems. This is not the first time QNAP devices have come under attack with previous attacks from eChoraix Ransomware and AgeLocker Ransomware. The QNAP team has made this new attack a priority to develop a malware removal solution.
Written by: Nataliia Zdrok, Threat Intelligence Analyst at Binary Defense Russia’s invasion of Ukraine increased