QNAP Systems, Inc. (QNAP) issued a statement strongly urging users to immediately update and run malware scans on QNAP NAS devices after recent reports of ransomware attacks involving Qlocker and eCh0raix.
QNAP has fixed a High severity Command Injection vulnerability CVE-2020-25847 in QTS and QuTS hero.
QNAP Systems has patched two access control vulnerabilities that affect QTS Helpdesk software.
Cyber criminals are using QSnatch malware to target vulnerable QNAP Network Attached Storage (NAS) devices.
A security researcher disclosed four vulnerabilities in QNAP PhotoStation and CGI programs. All QNAP network-attached storage (NAS) devices running Photo Station are vulnerable and of those, approximately 450,000 QNAP NAS devices are exposed to the internet.