Solution for NAS disconnection caused by Malware Remover update

QuTS hero

QuTS hero is the operating system for high-end and enterprise QNAP NAS models. With Linux and ZFS, QuTS hero supports advanced data reduction technologies for further driving down costs and increasing reliablility of SSD (all-flash) storage.

System
Applications

QuTScloud

QuTScloud is the operating system for QNAP Cloud NAS virtual appliances. With the possibility of on-premises and cloud deployment, QuTScloud enables optimized cloud data usage and flexible resource allocation at a predictable monthly cost.

System
Applications

QES

QES is the operating system for dual-controller QNAP NAS models. With FreeBSD and ZFS, QES is flash-optimized, capable of driving outstanding performance for all-flash storage arrays.

System
Product
Resources

QNE Network

QNE Network is the operating system for QuCPE, QNAP's universal customer premises equipment series. Run virtual network functions, freely configure software-defined networks, and enjoy benefits such as lowered costs and reduced management efforts.

System
Applications

QSS

QNAP Switch System (QSS) is the configuration interface for QNAP's managed switch series. Enable management functions such as link aggregation, VLAN, and RSTP, to take care of your network topology with ease.

System

QVR Pro

QVR Pro is the network video recorder software for QNAP's QVR Pro video surveillance appliances. QVR Pro can be also used with a series of apps, such as face recognition and door access control, making it versatile for a range of scenarios.

System
Applications
Resources

QVR Face

QVR Face is a smart facial recognition solution featuring real-time live streaming video analytics from connected cameras. It can be integrated into multiple scenarios to provide intelligent attendance management, door access control management, VIP welcome systems and smart retail services.

System
Resources

QVR Elite

QVR Elite is the subscription-based network video recorder software for QNAP's QTS, QuTS hero, and QNE Network operating systems. Its low monthly fee enables homes and small businesses to build a cost-effective and flexible video surveillance system.

System
Resources

Smart Video Solutions

QNAP smart video solutions provides integrated intelligent packages such as video conferencing and smart retail, boosting productivity for individuals and businesses.

Video Conferencing
Smart Retail
<< Back to Security Advisory List

Resolved eCh0raix Ransomware

  • Release date: May 14, 2021
  • Security ID: QSA-21-18
  • Affected products: QNAP NAS devices
  • Status: Resolved

Summary

The eCh0raix ransomware has been reported to affect QNAP NAS devices. Devices using weak passwords or outdated QTS firmware may be susceptible to attack.

We strongly recommend users act immediately to protect their data.

If you have any questions regarding this issue, please contact us through the QNAP Helpdesk.

Recommendation

To avoid infection, we recommend the following actions:

  1. Use stronger passwords for your administrator accounts.
  2. Enable IP Access Protection to protect accounts from brute force attacks.
  3. Avoid using default port numbers 443 and 8080.
  4. Update QTS to the latest version.
  5. Update all installed applications to their latest versions.

Changing the Device Password

  1. Log on to QTS or QuTS hero as administrator.
  2. Click the profile picture on the Task Bar.
    The Options window opens.
  3. Click Password Settings.
  4. Specify the old password.
  5. Specify the new password.
    QNAP recommends the following criteria to improve password strength:
    • At least 8 characters in length
    • Include both uppercase and lowercase characters
    • Include at least one number and one special character
    • Must not be the same as the username or the username reversed
    • Must not include characters that are consecutively repeated three or more times
  6. Verify the new password.
  7. Click Apply.

Enabling IP Access Protection

  1. Log on to QTS or QuTS hero as administrator.
  2. Go to Control Panel > System > Security > IP Access Protection.
  3. Configure SSH protection.
    1. Select SSH.
    2. Specify a time period, the number of failed login attempts, and the duration for blocking an IP address that has reached the number of failed login attempts within the time period.
  4. Configure HTTP(S) protection.
    1. Select HTTP(S).
    2. Specify a time period, the number of failed login attempts, and the duration for blocking an IP address that has reached the number of failed login attempts within the time period
  5. Click Apply.

Changing the System Port Number

  1. Log on to QTS or QuTS hero as administrator.
  2. Go to Control Panel > System > General Settings > System Administration.
  3. Specify a new system port number.
    Warning: Do not use 443 or 8080.
  4. Click Apply.

Updating QTS

  1. Log on to QTS as administrator.
  2. Go to Control Panel > System > Firmware Update.
  3. Under Live Update, click Check for Update.
    QTS downloads and installs the latest available update.

Updating All Installed Applications

  1. Log on to QTS as administrator.
  2. Go to App Center.
  3. Select My Apps.
  4. Next to Install Updates, click All.
    A confirmation message appears.
  5. Click OK.
    QTS updates all your installed applications to their latest versions.

Revision History:
V1.0 (May 14, 2021) - Published
V1.1 (November 4, 2021) - Added recommendation and instructions for updating QTS and installed applications
V2.0 (December 30, 2021) - Status updated

Choose specification

      Show more Less

      This site in other countries/regions:

      open menu close menu back to top