Deadbolt Ransomware Uses Multi-Tiered Extortion

In January 2021, news surfaced of a ransomware strain known as Deadbolt that targets backups and is intended at serious home users, hobbyists, and small companies. Deadbolt is designed to extort money from its victims. Users who needed backups and were knowledgeable enough to make them, but who lacked the time or funds to give their backup routine the attention it deserves were the type of customers that Deadbolt targeted.

What Happened?

In May, QNAP issued a warning to its customers about continuous assaults against NAS equipment that were being carried out by the DeadBolt ransomware organization.

Taipei, Taiwan, May 19, 2022 – QNAP® Systems, Inc. recently detected a new attack by the DEADBOLT Ransomware. According to the investigation by the QNAP Product Security Incident Response Team (QNAP PSIRT), the attack targeted NAS devices using QTS 4.3.6 and QTS 4.4.1, and the affected models were mainly TS-x51 series and TS-x53 series . QNAP urges all NAS users to check and update QTS to the latest version as soon as possible, and avoid exposing their NAS to the Internet.

Source

As Cyware explained, the attacks began in January, and the threat actor is demanding a ransom payment of

Read More: https://heimdalsecurity.com/blog/deadbolt-ransomware-uses-multi-tiered-extortion/