News for Admins

Tech News

Article from ADMIN 52/2019
New ransomware targeting Linuxbased NAS devices; OpenSSH fixes side channel attacks; Purdue scientists build quantum gate; and NSF awards $10 million for supercomputer that emphasizes cloud integration

A New Ransomware Targeting Linux-based NAS Devices

Linux-based NAS devices made by QNAP Systems are under a new ransomware attack, allowing bad actors to hold user's data hostage for ransom.

According to The Hacker News, the new ransomware family was independently discovered by researchers at two separate security firms, Intezer and Anomali, and targets poorly protected or vulnerable QNAP NAS servers either by brute forcing weak SSH credentials or exploiting known vulnerabilities.

The ransomware implementations are named "QNAPCrypt" by Intezer and "eCh0raix" by Anomali. Written in the Go programming language, the ransomware encrypts files with targeted extensions using AES encryption and appends an .encrypt extension to each.

For some unknown reason, the ransomware is being merciful to NAS devices located in Belarus, Ukraine, or Russia. "The ransomware terminates the file encryption process and exits without doing any harm to the files," reported The Hacker News.

WebCam Security Issues for Zoom Users

Zoom, which is considered a market leader in Gartner's Magic Quadrant for Meeting Solutions, is a popular solution for businesses to conduct online meetings. But the service is caught in an endless loop of privacy invasion and security vulnerabilities.

Security expert Jonathan Leitschuh recently reported that "a vulnerability in the Mac Zoom Client allows any malicious website to enable your camera without your permission. The flaw potentially exposes up to 750,000 companies around the world that use Zoom to conduct day-to-day business."

Removing Zoom wouldn't fix the problem, because the 'localhost' web server running on the machine will re-install the Zoom client without user permission.

Additionally, if you've ever installed the Zoom client and then

Use Express-Checkout link below to read the full article (PDF).

Buy this article as PDF

Express-Checkout as PDF
Price $2.95
(incl. VAT)

Buy ADMIN Magazine

Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

comments powered by Disqus