Alert GCSA-22003 - Configurazione sicura per dispositivi NAS QNAP
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
alert ID: GCSA-22003
data: 11 gennaio 2022
titolo: Configurazione sicura per dispositivi NAS QNAP
******************************************************************
:: Descrizione del problema
Visti i continui attacchi di tipo ransomware e brute force
contro i sistemi connessi in rete, il produttore taiwanese QNAP
ha pubblicato un avviso, per esortare gli utenti di dispositivi NAS
a seguire delle best practice per la configurazione sicura.
Il produttore indica anche degli strumenti di valutazione del rischio
e dei metodi protetti di accesso alle macchine.
Maggiori informazioni sono disponibili alla sezione "Riferimenti".
:: Software interessato
NAS QNAP
:: Soluzioni
Aggiornare i sistemi alle ultime versioni rilasciate
e limitare il piu' possibile i servizi esposti.
https://www.qnap.com/en/download
:: Riferimenti
Take Immediate Actions to Secure QNAP NAS
Jan 2022
https://www.qnap.com/en/security-news/2022/take-immediate-actions-to-secure-qnap-nas
Security Counselor - Your security portal for QNAP NAS
https://www.qnap.com/solution/security-counselor/en/
Disable unnecessary port forwarding
May 2021
https://www.qnap.com/en/how-to/faq/article/disable-unnecessary-port-forwarding
The reason why you shouldn't connect QNAP NAS directly to the Internet without any protection
Apr 2021
https://blog.qnap.com/nas-internet-connect-en/
QNAP Security Advisories
https://www.qnap.com/en/security-advisories
QNAP Statement About Qlocker Ransomware
Apr 2021
https://www.qnap.com/static/landing/2021/qlocker/response/da-dk/
Security Advisory for Qlocker Ransomware
May 2021
https://www.qnap.com/en/security-advisory/qsa-21-12
Security Advisory for eCh0raix Ransomware
May 2021
https://www.qnap.com/en/security-advisory/qsa-21-18
Security Advisory for Malware QSnatch
Nov 2019
https://www.qnap.com/en/security-advisory/nas-201911-01
QNAP: Get NAS Devices Off the Internet Now
Jan 2022
https://threatpost.com/qnap-nas-devices-ransomware-attacks/177452/
eCh0raix Ransomware Variant Targets QNAP, Synology NAS Devices
Aug 2021
https://threatpost.com/ech0raix-ransomware-variant-qnap-synology-nas-devices/168516/
Unusual Linux Ransomware Targets NAS Servers (QNAPCrypt)
Jul 2019
https://threatpost.com/linux-ransomware-nas-servers/146441/
GARR CERT Security Alert - subscribe/unsubscribe:
https://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iF0EARECAB0WIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCYd2SpgAKCRDBnEyTZRJg
QmelAKC/bcJ/pQ+iT5zz5ycoWh4znVvmPACg3dJYQ6cuZKCD7br4oWrPF4ClK+I=
=80U9
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
alert ID: GCSA-22003
data: 11 gennaio 2022
titolo: Configurazione sicura per dispositivi NAS QNAP
******************************************************************
:: Descrizione del problema
Visti i continui attacchi di tipo ransomware e brute force
contro i sistemi connessi in rete, il produttore taiwanese QNAP
ha pubblicato un avviso, per esortare gli utenti di dispositivi NAS
a seguire delle best practice per la configurazione sicura.
Il produttore indica anche degli strumenti di valutazione del rischio
e dei metodi protetti di accesso alle macchine.
Maggiori informazioni sono disponibili alla sezione "Riferimenti".
:: Software interessato
NAS QNAP
:: Soluzioni
Aggiornare i sistemi alle ultime versioni rilasciate
e limitare il piu' possibile i servizi esposti.
https://www.qnap.com/en/download
:: Riferimenti
Take Immediate Actions to Secure QNAP NAS
Jan 2022
https://www.qnap.com/en/security-news/2022/take-immediate-actions-to-secure-qnap-nas
Security Counselor - Your security portal for QNAP NAS
https://www.qnap.com/solution/security-counselor/en/
Disable unnecessary port forwarding
May 2021
https://www.qnap.com/en/how-to/faq/article/disable-unnecessary-port-forwarding
The reason why you shouldn't connect QNAP NAS directly to the Internet without any protection
Apr 2021
https://blog.qnap.com/nas-internet-connect-en/
QNAP Security Advisories
https://www.qnap.com/en/security-advisories
QNAP Statement About Qlocker Ransomware
Apr 2021
https://www.qnap.com/static/landing/2021/qlocker/response/da-dk/
Security Advisory for Qlocker Ransomware
May 2021
https://www.qnap.com/en/security-advisory/qsa-21-12
Security Advisory for eCh0raix Ransomware
May 2021
https://www.qnap.com/en/security-advisory/qsa-21-18
Security Advisory for Malware QSnatch
Nov 2019
https://www.qnap.com/en/security-advisory/nas-201911-01
QNAP: Get NAS Devices Off the Internet Now
Jan 2022
https://threatpost.com/qnap-nas-devices-ransomware-attacks/177452/
eCh0raix Ransomware Variant Targets QNAP, Synology NAS Devices
Aug 2021
https://threatpost.com/ech0raix-ransomware-variant-qnap-synology-nas-devices/168516/
Unusual Linux Ransomware Targets NAS Servers (QNAPCrypt)
Jul 2019
https://threatpost.com/linux-ransomware-nas-servers/146441/
GARR CERT Security Alert - subscribe/unsubscribe:
https://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iF0EARECAB0WIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCYd2SpgAKCRDBnEyTZRJg
QmelAKC/bcJ/pQ+iT5zz5ycoWh4znVvmPACg3dJYQ6cuZKCD7br4oWrPF4ClK+I=
=80U9
-----END PGP SIGNATURE-----