New ransomware attacks target your NAS devices, backup storage

New ransomware attacks target your NAS devices, backup storage 1

The number of ransomware strains targeting NAS and backup storage devices is growing, with users “unprepared” for the threat, researchers say. 

Ransomware comes in many forms and guises. The malware variant is popular with cybercriminals and is used in attacks against the enterprise, critical services — including hospitals and utilities — and individuals. 

Once deployed on a system, the malware will usually encrypt files or full drives, issue its victim with a ransom note, and demand payment in return for a way to decrypt and restore access to locked content. 

There is no guarantee that paying up will result in decryption, but many will do so rather than lose their files — and in cases where crucial systems have been locked, such as at government bodies or healthcare providers, there is additional pressure to return to normal operations as quickly as possible. 

See also: Hit by ransomware? Victims of these four types of file-encrypting malware can now retrieve their files for free

The average consumer will often come across ransomware deployed through phishing campaigns and fraudulent messages, exploit kits, or bundled within illegitimate or compromised software. However, Kaspersky researchers say that Network Attached Storage (NAS) devices are now also under direct threat from malware operators. 

NAS systems, available for enterprise purposes and home setups, are devices connected to a network to provide centralized storage capacity, as well as for data backup purposes. 

These devices may be accessed directly through a network or may have a web interface. The problem, Kaspersky says, is that user authentication can sometimes be bypassed due to integrated software in NAS systems that have vulnerabilities. 

Ransomware developers have realized this, and while there was little evidence of NAS devices being targeted in 2018, this year, a range of new ransomware families have emerged with NAS-exploit capabilities. 

CNET: Proposal to require facial recognition for US citizens at airports dropped

To begin an attack chain, operators will first perform a scan of a range of IP addresses to find NAS devices that are accessible via the Internet. Exploits of unpatched vulnerabilities are then attempted, and if successful, Trojans will be deployed and data encryption of all devices connected to the NAS drive begins. 

According to Kaspersky’s Q3 IT threat evolution report, overall detection of ransomware attacks — based on customer data — dropped by 11 percent year-on-year. 

However, new ransomware modifications and families have grown from 5,195 to 13,138 in the past 12 months, a trend the researchers say “signals cybercriminal interest in this type of malware as means of enrichment.”

The research also says that WannaCry ransomware remains as the most popular form of ransomware with cybercriminals, followed by Phny and GandCrypt. 

TechRepublic: How to use iCloud Keychain to manage passwords on your iPhone or iPad

“Previously, encryption ransomware targeting NAS was hardly evident in the wild, and this year alone we have already detected a number of new ransomware families focused solely on NAS,” said Fedor Sinitsyn, security researcher at Kaspersky. “This trend is unlikely to fade, as this attack vector proves to be very profitable for the attackers, especially due to the users being completely unprepared for them as they consider this technology highly reliable.”

In November, Intezer and IBM X-Force researchers explored PureLocker, a new form of ransomware that is targeting enterprise servers. The malware, written in PureBasic, is actively being used in attacks and is offered to criminals as a custom — and likely expensive — tool.

Previous and related coverage


Have a tip? Get in touch securely via WhatsApp | Signal at +447713 025 499, or over at Keybase: charlie0


New ransomware attacks target your NAS devices, backup storage 2
About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews



bitcoin
Bitcoin (BTC) $ 43,481.00
ethereum
Ethereum (ETH) $ 3,064.35
cardano
Cardano (ADA) $ 2.22
tether
Tether (USDT) $ 1.00
binance-coin
Binance Coin (BNB) $ 375.37
xrp
XRP (XRP) $ 0.991369
solana
Solana (SOL) $ 147.03
polkadot
Polkadot (DOT) $ 31.26
usd-coin
USD Coin (USDC) $ 1.00
dogecoin
Dogecoin (DOGE) $ 0.222946
USD
EUR
GBP
bitcoinBitcoin (BTC)
$ 43,481.00
ethereumEthereum (ETH)
$ 3,064.35
tetherTether (USDT)
$ 1.00
bitcoin-cashBitcoin Cash (BCH)
$ 541.00
litecoinLitecoin (LTC)
$ 159.84
bitcoinBitcoin (BTC)
37.077,34
ethereumEthereum (ETH)
2.613,05
tetherTether (USDT)
0,852725
bitcoin-cashBitcoin Cash (BCH)
461,32
litecoinLitecoin (LTC)
136,30
bitcoinBitcoin (BTC)
31,760.70
ethereumEthereum (ETH)
2,238.35
tetherTether (USDT)
0.73045
bitcoin-cashBitcoin Cash (BCH)
395.17
litecoinLitecoin (LTC)
116.76

Automated trading with HaasBot Crypto Trading Bots

Crypto Scams

Crypto Scams
Crypto Scams Still Persistent In 2021, SEC Warns About Red Flags To Watch
September 9, 2021
Poly Network
Here’s How Hackers Stole Over $600 million in the Poly Network Attack
August 12, 2021
The World’s Most Infamous Crypto Hacks and Scams
July 31, 2021
Cryptocurrency Exchanges
Cryptocurrency Exchanges and the Plague of Scams and Bans
June 29, 2021
What Role Do Cryptocurrencies Play In The Era Of Ransomware Attacks?
June 9, 2021

Blockchain/Cryptocurrency Questions and Answers

Beginner’s Guide to Investing in Cryptocurrency
August 9, 2021
Short-Sell Cryptocurrency
How to Short-Sell Cryptocurrency: A Brief Overview
July 17, 2021
Klaytn
What Is Klaytn (KLAY) And How Does It Work?
July 16, 2021
Cryptocurrencies
Our Crypto Roundup Interview Asks- Do Cryptocurrencies Have a Future?
July 15, 2021
Solana
What Is Solana (SOL) And How Does It Work?
June 26, 2021


CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin43,832 1.46 % 4.00 % 9.04 %
Ethereum3,083.5 1.22 % 7.45 % 14.25 %
Cardano2.240 0.69 % 9.21 % 10.20 %
Tether0.9986 0.03 % 0.08 % 0.23 %
Binance Coin377.99 1.25 % 6.67 % 12.08 %
XRP1.000 1.56 % 10.87 % 10.55 %
Solana147.42 1.15 % 12.80 % 7.05 %
Polkadot30.87 2.19 % 17.29 % 10.73 %
USD Coin1.000 0.39 % 0.30 % 0.32 %
Dogecoin0.2249 1.45 % 8.32 % 9.08 %

bitcoin
Bitcoin (BTC) $ 43,481.00
ethereum
Ethereum (ETH) $ 3,064.35
cardano
Cardano (ADA) $ 2.22
tether
Tether (USDT) $ 1.00
binance-coin
Binance Coin (BNB) $ 375.37
xrp
XRP (XRP) $ 0.991369
solana
Solana (SOL) $ 147.03
polkadot
Polkadot (DOT) $ 31.26
usd-coin
USD Coin (USDC) $ 1.00
dogecoin
Dogecoin (DOGE) $ 0.222946