eCh0raix Ransomware
Release date: June 8, 2020
Security ID: QSA-20-02
Severity rating: High
CVE identifier: N/A
Affected products: QNAP NAS devices running Photo Station
Summary
The eCh0raix ransomware has been reported to target QNAP NAS devices and exploit certain vulnerabilities in earlier versions of QTS and Photo Station.
We have already fixed these issues in recent releases since September 2019.
QTS:
- QTS 4.4.1: build 20190918 and later
- QTS 4.3.6: build 20190919 and later
- QTS 4.4.1: Photo Station 6.0.3 and later
- QTS 4.3.4 - QTS 4.4.0: Photo Station 5.7.10 and later
- QTS 4.3.0 - QTS 4.3.3: Photo Station 5.4.9 and later
- QTS 4.2.6: Photo Station 5.2.11 and later
To secure your device and to protect your data from ransomware attacks and unauthorized usage, we strongly recommend updating QTS and Photo Station to their latest versions.
Important:
Regardless of your current QTS version, QNAP strongly recommends updating your QTS to the latest available version for your NAS model to ensure that your device can benefit from vulnerability fixes. You can check the product support status of your NAS model.
Installing the QTS Update
- Log on to QTS as administrator.
- Go to Control Panel> System> Firmware Update.
- Under Live Update, click Check for Update.
Tip: You can also download the update from the QNAP website. Go to Support> Download Center and then perform a manual update for your specific device.
Updating Photo Station
- Log on to QTS as administrator.
- Open the App Center, and then click .
A search box appears. - Type “Photo Station”, and then press ENTER.
The Photo Station application appears in the search result list. - Click Update.
A confirmation message appears.
Note: The Update button is not available if you are using the latest version. - Click OK.
The application is updated.
Revision history: V1.0 (June 8, 2020) - Published
If you have any questions regarding this issue, please contact us at https://www.qnap.com/go/support-ticket/.