myQnapcloud connect + Bitdefender = PasswordStealer Attack
Posted: Wed Nov 06, 2019 5:43 pm
Hello all! A newbie here
Firstly, must say I've been working without problems for months with myQnapcloud Connect desktop application, Windows 10. It was used for establishing connection with a NAS by means of an OpenVPN. (please excuse me if not using appropiate terminolgy)
So all settings, certificates, loging etc. were correct.
After installing Bitdefender Endpoint Security, it detects the following threat when trying to connect to the VPN:
"Network Attack Defense has blocked an attack attempt.
The malicious PrivacyThreat.PasswordStealer.HTTP.Internal attempt coming from IP 10.0.0.1 was blocked."
After that, myQnapcloud Connect keeps asking me for the loging username and password. Every new atempt of loging, Bitdefender throws the same warning, and qnap loging info is requested again.
It seems not related to firewall protection, both myQnapcloud and openvpn executables are allowed to connect to the internet in Bitdefender rules lists. The atack is categorized into what they call "Network attack deffense" inside the "Content Control" module, not the Firewall module.
Is there anything I can do on myQnapcloud connect to prevent this from happening?
If not, then just informing of this issue when using myQnapCloud connect + Bitdefender.
Thanks a lot!
Firstly, must say I've been working without problems for months with myQnapcloud Connect desktop application, Windows 10. It was used for establishing connection with a NAS by means of an OpenVPN. (please excuse me if not using appropiate terminolgy)
So all settings, certificates, loging etc. were correct.
After installing Bitdefender Endpoint Security, it detects the following threat when trying to connect to the VPN:
"Network Attack Defense has blocked an attack attempt.
The malicious PrivacyThreat.PasswordStealer.HTTP.Internal attempt coming from IP 10.0.0.1 was blocked."
After that, myQnapcloud Connect keeps asking me for the loging username and password. Every new atempt of loging, Bitdefender throws the same warning, and qnap loging info is requested again.
It seems not related to firewall protection, both myQnapcloud and openvpn executables are allowed to connect to the internet in Bitdefender rules lists. The atack is categorized into what they call "Network attack deffense" inside the "Content Control" module, not the Firewall module.
Is there anything I can do on myQnapcloud connect to prevent this from happening?
If not, then just informing of this issue when using myQnapCloud connect + Bitdefender.
Thanks a lot!