AgeLocker is a ransomware that uses an encryption algorithm called AgeLocker designed to replace GPG to encrypt files, backups, and transmissions. In fact, its providers encourage their customers to immediately update the operating system of their NAS devices. It also recommends updating applications running on the NAS that could be exploited as an entry point for attackers.
QNAP NAS devices continue to come under attack, in early March 360Netlab researchers warned of a cryptocurrency malware campaign targeting unpatched QNAP network-attached storage (NAS) devices. Threat actors were exploiting two rogue remote command execution vulnerabilities, tracked as CVE-2020-2506 and CVE-2020-2507, in the Helpdesk application that the vendor fixed in October 2020.
AgeLocker ransomware was first detected in the wild in July 2020 when it exploited bugs in the firmware of the QNAP NAS (known as QTS) and in a pre-installed application called PhotoStation. The company warned of these attacks a few months later, in September 2020, when incidents with customers began to increase. AgeLocker is the fourth known ransomware variety targeting QNAP NAS devices after Qlocker, eCh0raix, and Muhstik. AgeLocker’s name comes from its use of the Actually Good Encryption (AGE) algorithm to encrypt files.
Protect yourself from AgeLocker
The best one can do against this threat and secure your device and protect your data from malicious ransomware attacks and unauthorized access, it is strongly recommended to update QTS and all installed applications to their latest versions to benefit from the fixes of vulnerabilities. You can check the product support status to see the latest updates available for your NAS model.
Related reads:
NAS – What does this device offer
Qlocker new ransomware that puts QNAP devices at risk
[…] reads:AgeLocker is a Malware that attacks QNAP NAS devicesQlocker new ransomware that puts QNAP devices at […]