QNAP confirms Qlocker ransomware used HBS backdoor account

From bleepingcomputer.com

QNAP: Patch Hybrid Backup Sync to block Qlocker ransomware attacks

QNAP is advising customers to update the HBS 3 disaster recovery app to block Qlocker ransomware attacks targeting their Internet-exposed Network Attached Storage (NAS) devices.

“The ransomware known as Qlocker exploits CVE-2021-28799 to attack QNAP NAS running certain versions of HBS 3 (Hybrid Backup Sync),” the Taiwan-based NAS appliance maker said in a security advisory issued today.

Read more…