Alert GCSA-22003 - Configurazione sicura per dispositivi NAS QNAP

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

******************************************************************

alert ID: GCSA-22003
data: 11 gennaio 2022
titolo: Configurazione sicura per dispositivi NAS QNAP

******************************************************************

:: Descrizione del problema

Visti i continui attacchi di tipo ransomware e brute force
contro i sistemi connessi in rete, il produttore taiwanese QNAP
ha pubblicato un avviso, per esortare gli utenti di dispositivi NAS
a seguire delle best practice per la configurazione sicura.

Il produttore indica anche degli strumenti di valutazione del rischio
e dei metodi protetti di accesso alle macchine.

Maggiori informazioni sono disponibili alla sezione "Riferimenti".


:: Software interessato

NAS QNAP


:: Soluzioni

Aggiornare i sistemi alle ultime versioni rilasciate
e limitare il piu' possibile i servizi esposti.

https://www.qnap.com/en/download


:: Riferimenti

Take Immediate Actions to Secure QNAP NAS
Jan 2022
https://www.qnap.com/en/security-news/2022/take-immediate-actions-to-secure-qnap-nas

Security Counselor - Your security portal for QNAP NAS
https://www.qnap.com/solution/security-counselor/en/

Disable unnecessary port forwarding
May 2021
https://www.qnap.com/en/how-to/faq/article/disable-unnecessary-port-forwarding

The reason why you shouldn't connect QNAP NAS directly to the Internet without any protection
Apr 2021
https://blog.qnap.com/nas-internet-connect-en/

QNAP Security Advisories
https://www.qnap.com/en/security-advisories

QNAP Statement About Qlocker Ransomware
Apr 2021
https://www.qnap.com/static/landing/2021/qlocker/response/da-dk/

Security Advisory for Qlocker Ransomware
May 2021
https://www.qnap.com/en/security-advisory/qsa-21-12

Security Advisory for eCh0raix Ransomware
May 2021
https://www.qnap.com/en/security-advisory/qsa-21-18

Security Advisory for Malware QSnatch
Nov 2019
https://www.qnap.com/en/security-advisory/nas-201911-01

QNAP: Get NAS Devices Off the Internet Now
Jan 2022
https://threatpost.com/qnap-nas-devices-ransomware-attacks/177452/

eCh0raix Ransomware Variant Targets QNAP, Synology NAS Devices
Aug 2021
https://threatpost.com/ech0raix-ransomware-variant-qnap-synology-nas-devices/168516/

Unusual Linux Ransomware Targets NAS Servers (QNAPCrypt)
Jul 2019
https://threatpost.com/linux-ransomware-nas-servers/146441/


GARR CERT Security Alert - subscribe/unsubscribe:
https://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----

iF0EARECAB0WIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCYd2SpgAKCRDBnEyTZRJg
QmelAKC/bcJ/pQ+iT5zz5ycoWh4znVvmPACg3dJYQ6cuZKCD7br4oWrPF4ClK+I=
=80U9
-----END PGP SIGNATURE-----