News
News Categories

Asustor NAS units under attack from DeadBolt ransomware *updated*

By Ken Wong - on 28 Feb 2022, 3:05pm

Asustor NAS units under attack from DeadBolt ransomware

DeadBolt was the same ransomware that targeted QNAP devices last year. Image source: Asustor.

*Updated: 28 February 2022 15:00 with recommendations from Asustor*

Asustor is urging users to disable EZ-Connect as reports come in that Asustor NAS units are falling prey to the DeadBolt ransomware.

Asustor forums and social media are filled with users complaining that they have fallen prey to the attack and getting locked out of their devices. Right now, most fingers are being pointed at Asustor’s EZ-Connect service as the main culprit.

Deadbolt, which was the same ransomware that targeted QNAP devices last year, secures remote access to a victim's NAS, encrypts the data, and then demands a bitcoin ransom. QNAP users were told to pay 0.03 BTC (S$1,505) to unlock their devices with an additional offer of a universal decryptor to QNAP for 50 BTC.

Asustor has released recommended steps to keep your NAS safe from attack assuming it hasn’t already been locked and held to ransom. There is also a link to an online form for victims so that an Asustor technician can contact them for help.

*update*

Asustor has released a list of recommended actions along with diagrams to help customers using their NAS devices, except for those using the AS10. If you still need help, please visit this page for help.  

Join HWZ's Telegram channel here and catch all the latest tech news!
Our articles may contain affiliate links. If you buy through these links, we may earn a small commission.