New ransomware attacks target your NAS devices, backup storage

New ransomware attacks target your NAS devices, backup storage 1

The number of ransomware strains targeting NAS and backup storage devices is growing, with users “unprepared” for the threat, researchers say. 

Ransomware comes in many forms and guises. The malware variant is popular with cybercriminals and is used in attacks against the enterprise, critical services — including hospitals and utilities — and individuals. 

Once deployed on a system, the malware will usually encrypt files or full drives, issue its victim with a ransom note, and demand payment in return for a way to decrypt and restore access to locked content. 

There is no guarantee that paying up will result in decryption, but many will do so rather than lose their files — and in cases where crucial systems have been locked, such as at government bodies or healthcare providers, there is additional pressure to return to normal operations as quickly as possible. 

See also: Hit by ransomware? Victims of these four types of file-encrypting malware can now retrieve their files for free

The average consumer will often come across ransomware deployed through phishing campaigns and fraudulent messages, exploit kits, or bundled within illegitimate or compromised software. However, Kaspersky researchers say that Network Attached Storage (NAS) devices are now also under direct threat from malware operators. 

NAS systems, available for enterprise purposes and home setups, are devices connected to a network to provide centralized storage capacity, as well as for data backup purposes. 

These devices may be accessed directly through a network or may have a web interface. The problem, Kaspersky says, is that user authentication can sometimes be bypassed due to integrated software in NAS systems that have vulnerabilities. 

Ransomware developers have realized this, and while there was little evidence of NAS devices being targeted in 2018, this year, a range of new ransomware families have emerged with NAS-exploit capabilities. 

CNET: Proposal to require facial recognition for US citizens at airports dropped

To begin an attack chain, operators will first perform a scan of a range of IP addresses to find NAS devices that are accessible via the Internet. Exploits of unpatched vulnerabilities are then attempted, and if successful, Trojans will be deployed and data encryption of all devices connected to the NAS drive begins. 

According to Kaspersky’s Q3 IT threat evolution report, overall detection of ransomware attacks — based on customer data — dropped by 11 percent year-on-year. 

However, new ransomware modifications and families have grown from 5,195 to 13,138 in the past 12 months, a trend the researchers say “signals cybercriminal interest in this type of malware as means of enrichment.”

The research also says that WannaCry ransomware remains as the most popular form of ransomware with cybercriminals, followed by Phny and GandCrypt. 

TechRepublic: How to use iCloud Keychain to manage passwords on your iPhone or iPad

“Previously, encryption ransomware targeting NAS was hardly evident in the wild, and this year alone we have already detected a number of new ransomware families focused solely on NAS,” said Fedor Sinitsyn, security researcher at Kaspersky. “This trend is unlikely to fade, as this attack vector proves to be very profitable for the attackers, especially due to the users being completely unprepared for them as they consider this technology highly reliable.”

In November, Intezer and IBM X-Force researchers explored PureLocker, a new form of ransomware that is targeting enterprise servers. The malware, written in PureBasic, is actively being used in attacks and is offered to criminals as a custom — and likely expensive — tool.

Previous and related coverage

Have a tip? Get in touch securely via WhatsApp | Signal at +447713 025 499, or over at Keybase: charlie0

About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews

Crypto Scams

Beanstalk Farms Loses $80M In A Massive DeFi Governance Flash-Loan Hack
Beanstalk Farms Loses $80M In A Massive DeFi Governance Flash-Loan Hack
April 23, 2022
Joon Pak Head of Crypto at Prove talks to Us about Crypto Fraud And More
April 11, 2022
Mintable CEO Zach Burks Talks to Us about the Opensea Stolen NFTs and Their Recovery
March 21, 2022
Crypto Crime
Crypto Crime Surges To Record Highs As Thieves Follow Market Buzz – Chainalysis 2022 Report
February 24, 2022
Bots Circumvent 2FA Login At Coinbase And Other Crypto Exchanges In 2022
Bots Have Circumvented 2FA Logins At Coinbase And Other Crypto Exchanges In 2022
February 17, 2022

Automated trading with HaasBot Crypto Trading Bots

Blockchain/Cryptocurrency Questions and Answers

Roundtable Interview-What is the Effect of The Russia-Ukraine War on Cryptocurrency Prices?
March 4, 2022
How Does Bitcoin Casino Work + 2021 Beginner’s Guide
November 8, 2021
How to Buy and Sell Cryptocurrency
November 8, 2021
What Are Bitcoin Futures And How Will They Work In 2022?
November 4, 2021
The Unconventional Guide to Ethereum
October 28, 2021

CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin29,387 0.34 % 2.68 % 1.79 %
Ethereum1,989.7 0.09 % 2.13 % 1.79 %
Tether1.001 0.01 % 0.07 % 0.06 %
BNB327.90 0.55 % 1.90 % 9.97 %
USD Coin0.9989 0.16 % 0.08 % 0.04 %
XRP0.4137 0.55 % 1.78 % 2.32 %
Binance USD1.002 0.05 % 0.06 % 0.03 %
Cardano0.9566 0.22 % 0.68 % 6.96 %
Solana50.08 0.47 % 4.14 % 6.65 %
Dogecoin0.08462 0.35 % 1.73 % 3.84 %

Bitcoin (BTC) $ 29,302.00
Ethereum (ETH) $ 1,986.87
Tether (USDT) $ 1.00
BNB (BNB) $ 326.48
USD Coin (USDC) $ 1.00
XRP (XRP) $ 0.412108
Binance USD (BUSD) $ 1.00
Cardano (ADA) $ 0.519952
Solana (SOL) $ 49.82
Dogecoin (DOGE) $ 0.08431