QNAP confirms Qlocker ransomware used HBS backdoor account
By
11:27 AM
QNAP is advising customers to update the HBS 3 disaster recovery app to block Qlocker ransomware attacks targeting their Internet-exposed Network Attached Storage (NAS) devices. The ransomware known as Qlocker exploits CVE-2021-28799 to attack QNAP NAS running certain versions of HBS 3 (Hybrid Backup Sync), the Taiwan-based NAS appliance maker said in a security advisory issued today. To prevent infection from Qlocker, we recommend updating HBS 3 to the latest version.
A massive Qlocker ransomware campaign started breaching QNAP NAS devices during the week of April 19, replacing victims files with password-protected 7-zip archives.