PRIVATE_FEEDS/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/alert_text.md

Date: 2021-04-23

A new ransomware strain named Qlocker is infecting hundreds of QNAP network-attached storage (NAS) devices every day; the first cases were reported on Tuesday, April 20.

Currently it is unknown if the attacks happen via new vulns or older, unpatched vulns, where patches are available but not applied.

CVE : Vendor : Product : CPE : BaseScore : Vector :

Patches : not available Exploits : circulating

we found various IPs in your ORG/ASN, matching criteria for possible vulnerable systems

False-Positive-Level:

please find a list of affected IPs below and more information on that problem here:

References:

• https://therecord.media/new-qlocker-ransomware-is-hitting-hundreds-of-qnap-nas-devices-per-day/
• https://www.qnap.com/en/news/2021/response-to-qlocker-ransomware-attacks-take-actions-to-secure-qnap-nas