Monday, October 19, 23:11
Home security AgeLocker ransomware: Targets QNAP NAS devices and steals files

AgeLocker ransomware: Targets QNAP NAS devices and steals files

That's it AgeLocker ransomware aims QNAP NAS Appliances and encrypts them data while in some cases steals and archives of the victims.

AgeLocker ransomware
AgeLocker ransomware: Targets QNAP NAS devices and steals files

AgeLocker ransomware uses one an encryption algorithm called Age (Actually Good Encryption), which is designed to replace GPG for encrypting files, copies security and streams.

AgeLocker was first unveiled in July 2020 and used this algorithm to encrypt its victims' files.

AgeLocker ransomware targets QNAP NAS devices

It is said that by the end of August 2020, AgeLocker or someone else ransomware using the same encryption, targets exposed QNAP NAS devices and encrypts their files.

A victim uploaded an encrypted file to ID Ransomware and the analysis showed that it was encrypted with Age encryption.

As it turns out, AgeLocker continues to target QNAP NAS Appliances to this day, all over the world.

When ransomware encrypts files, it leaves a ransom note with the name HOW_TO_RESTORE_FILES.txt. This note updates victim that he was attacked by ransomware and that his QNAP device was encrypted.

"Unfortunately, malware has infected your QNAP NAS device and a large number of your files have been encrypted using a hybrid encryption scheme"

In some cases, the attackers said that they first stole the victims' files and then proceeded to encrypt. These files included “medically data, scans, backups, etc.".

At this time, we do not know how hackers acquire access on QNAP devices nor the amount of money they ask for. However, the worrying thing is that there is no free way to recover files encrypted by AgeLocker ransomware.

AgeLocker ransomware: Targets QNAP NAS devices and steals files

How to protect your QNAP NAS devices?

As we read in Bleeping Computer, QNAP NAS devices are often in the crosshairs of hackers. For example, they have accepted attacks by eCh0raix Ransomware. At the time, QNAP had provided some device protection advice and stressed its importance. firmware update and vulnerability correction.

  • Log in to QTS as an administrator.
  • Go to Control Panel> System> Firmware Update.
  • In the Live Update section, click Check for Updates.
  • QTS downloads and installs the latest update.

You can also get updates from QNAP site. Go to Support> Download Center and update your device (manually).

QNAP also suggests users to update Photo Station software:

  • Log in to QTS as an administrator.
  • Open the Application Center and click the magnifying glass. A search box appears.
  • Type “Photo Station” and then press ENTER.
  • You will find the Photo Station application in the results.
  • Click Update (The Update button is not available if you are using the latest version).
  • A confirmation message is displayed.
  • Click OK.
  • The application is updated.

Finally, all owners of QNAP NAS devices should take some general steps to protect themselves from ransomware and other malware:

  • Change the passwords for all accounts on the device
  • Remove unknown user accounts from the device
  • Make regular updates to the firmware and all applications
  • Remove applications that you do not use or are unfamiliar with
  • Install the QNAP MalwareRemover application
  • Define an access control list for the device (Control Panel -> Security -> Level security)


Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortress
Pursue Your Dreams & Live!


Windows 10: Microsoft has released a new task manager for gamers

If your computer games are slow or slow, you can free up resources in Windows 10 using the new task manager ...

NASA's Osiris-Rex is expected to land on the asteroid Bennu tomorrow

NASA's Osiris-Rex spacecraft will land on a large asteroid for a while on Tuesday and will collect some rocks and ...

How to turn off all vibrations on your iPhone completely

Some people are particularly sensitive to the vibrations of their iPhone, either for personal or medical reasons. Thanks to...

How to convert Keynote presentations to Microsoft PowerPoint

Apple presentation software does all the hard work when converting a PowerPoint presentation to Keynote. Doing the opposite, ...

QAnon Conspiracy Theories: YouTube removes them from the platform

YouTube is the latest social networking site to launch a campaign against the spread of QAnon conspiracy theories.

Vizom: New malware hijacks bank accounts

Vizom disguises itself as a popular "videoconferencing software", with meetings all online due to the pandemic. Investigators...

The Windows 10 Calculator has been ported to Linux

The Windows 10 Calculator has been ported to Linux and can be installed from the Canonical Snap Store. The ...

System breach exposes Kleenheat customer data

Australian-based gas company Kleenheat has warned some of its customers of data breaches, which may ...

US Election: Candidates manipulate voters via email!

The politicians who are candidates for the upcoming US elections use psychological tricks and "dark" patterns in their emails to ...

Google Chrome and Edge create random debug.log logs

An error in the latest version of Chrome and other Chromium-based browsers causes random debug.log files to be created ...