Saturday, January 23, 06:58
Home security AgeLocker ransomware: Targets QNAP NAS devices and steals files

AgeLocker ransomware: Targets QNAP NAS devices and steals files

That's it AgeLocker ransomware aims QNAP NAS Appliances and encrypts them data while in some cases steals and archives of the victims.

AgeLocker ransomware
AgeLocker ransomware: Targets QNAP NAS devices and steals files

AgeLocker ransomware uses one an encryption algorithm called Age (Actually Good Encryption), which is designed to replace GPG for encrypting files, copies security and streams.

AgeLocker was first unveiled in July 2020 and used this algorithm to encrypt its victims' files.

AgeLocker ransomware targets QNAP NAS devices

It is said that by the end of August 2020, AgeLocker or someone else ransomware using the same encryption, targets exposed QNAP NAS devices and encrypts their files.

A victim uploaded an encrypted file to ID Ransomware and the analysis showed that it was encrypted with Age encryption.

As it turns out, AgeLocker continues to target QNAP NAS Appliances to this day, all over the world.

When ransomware encrypts files, it leaves a ransom note with the name HOW_TO_RESTORE_FILES.txt. This note updates victim that he was attacked by ransomware and that his QNAP device was encrypted.

"Unfortunately, malware has infected your QNAP NAS device and a large number of your files have been encrypted using a hybrid encryption scheme".

In some cases, the attackers said that they first stole the victims' files and then proceeded to encrypt. These files included “medically data, scans, backups, etc.".

At this time, we do not know how hackers acquire access on QNAP devices nor the amount of money they ask for. However, the worrying thing is that there is no free way to recover files encrypted by AgeLocker ransomware.

AgeLocker ransomware: Targets QNAP NAS devices and steals files

How to protect your QNAP NAS devices?

As we read in Bleeping Computer, QNAP NAS devices are often in the crosshairs of hackers. For example, they have accepted attacks by eCh0raix Ransomware. At the time, QNAP had provided some device protection advice and stressed its importance. firmware update and vulnerability correction.

  • Log in to QTS as an administrator.
  • Go to Control Panel> System> Firmware Update.
  • In the Live Update section, click Check for Updates.
  • QTS downloads and installs the latest update.

You can also get updates from QNAP site. Go to Support> Download Center and update your device (manually).

QNAP also suggests users to update Photo Station software:

  • Log in to QTS as an administrator.
  • Open the Application Center and click the magnifying glass. A search box appears.
  • Type “Photo Station” and then press ENTER.
  • You will find the Photo Station application in the results.
  • Click Update (The Update button is not available if you are using the latest version).
  • A confirmation message is displayed.
  • Click OK.
  • The application is updated.

Finally, all owners of QNAP NAS devices should take some general steps to protect themselves from ransomware and other malware:

  • Change the passwords for all accounts on the device
  • Remove unknown user accounts from the device
  • Make regular updates to the firmware and all applications
  • Remove applications that you do not use or are unfamiliar with
  • Install the QNAP MalwareRemover application
  • Define an access control list for the device (Control Panel -> Security -> Level security)


Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortress
Pursue Your Dreams & Live!


Intel CPUs Review: Core i7-10700 vs Core i7-10700K!

Over the years, the Intel series of processors (CPUs) introduced the series of overclocking models "K" and more recently the series ...

The DeLorean can return as an electric car

The DMC DeLorean has been out of production for almost 40 years, but it looks like the iconic vehicle will return as an electric car.

Windows RDP servers are used to support DDoS

Cybercrime gangs are abusing Windows Remote Desktop Protocol (RDP) systems to reinforce the unwanted ...

SEPA: He refused to pay a ransom and thousands of files were leaked

Thousands of stolen files of the Scottish Environmental Protection Agency (SEPA) have been published by hackers, after the organization refused to pay the ransom ...

Fines at Valve, Capcom and Zenimax for geo-exclusion of games

Following a European Commission investigation, a group of video game publishers was fined € 7,8 million following allegations of geo-exclusion practices. In...

Bitcoin helps the middle class survive the pandemic

Regulators still imply that Bitcoin is just a tool for criminals, but it seems that for the middle class ...

Lightworks 2021.1 for Linux, Mac and Windows has been released

Lightworks Professional Multi-Platform Video Editing Software received the first major update to Lightworks 2021.1 for Windows, Linux and Mac.

Netflix: Watch the 9 best Anime movies of all time

One of the good things about the pandemic was that many people were introduced to the anime world. And the issue with anime is ...

CHwapi: Windows BitLocker "hit" the Belgian hospital!

The CHwapi hospital in Belgium was attacked by a cyber attack on January 17, with hackers claiming to have encrypted 40 servers and 100 ...

CPU / GPU Lotteries: Newegg sells the few on the market

Hardware shortages are not uncommon, but the pandemic has worsened the situation. The whole planet is closed to ...