QNAP® Systems, Inc. (QNAP), a leading computing, networking and storage solution innovator, today issued a statement in response to a recent report and media coverage that the QSnatch malware is targeting QNAP NAS and attempting to obtain access. QNAP has updated its Malware Remover app for the QTS operating system on November 1 to detect and remove the malware from QNAP NAS. QNAP also released an updated security advisory on November 2 to address the issue. Users are urged to install the latest version of the Malware Remover app from QTS App Center or by manual downloading from the QNAP website. QNAP also recommends a series of actions for QNAP NAS security enhancements. They’re also detailed in the security advisory.

Furthermore, QNAP clarifies that it has never recommended a reinitialization to purge the malware from QNAP NAS. Users are advised to take actions listed in the security advisory or, alternatively, contact QNAP for technical assistance. Instructions for creating a support request can be found here.

QNAP would like to acknowledge NCSC-FI of Finland and CERT-Bund of Germany for their research and assistance during the investigation of the issue.