{"id":352290,"date":"2022-09-07T01:26:38","date_gmt":"2022-09-07T03:26:38","guid":{"rendered":"https:\/\/teknomers.com\/fr\/qnap-met-en-garde-contre-de-nouvelles-attaques-de-rancongiciel-deadbolt-exploitant-la-faille-de-photo-station\/"},"modified":"2022-09-07T01:26:39","modified_gmt":"2022-09-07T03:26:39","slug":"qnap-met-en-garde-contre-de-nouvelles-attaques-de-rancongiciel-deadbolt-exploitant-la-faille-de-photo-station","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/qnap-met-en-garde-contre-de-nouvelles-attaques-de-rancongiciel-deadbolt-exploitant-la-faille-de-photo-station\/","title":{"rendered":"QNAP met en garde contre de nouvelles attaques de ran\u00e7ongiciel DeadBolt exploitant la faille de Photo Station"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both\"><\/div>\n<p>QNAP a publi\u00e9 un nouvel avis exhortant les utilisateurs de ses p\u00e9riph\u00e9riques de stockage en r\u00e9seau (NAS) \u00e0 passer \u00e0 la derni\u00e8re version de <a rel=\"nofollow noopener\" href=\"https:\/\/www.qnap.com\/en\/software\/photo-station\" target=\"_blank\">Station photo<\/a> suite \u00e0 une nouvelle vague d&#8217;attaques de ransomware DeadBolt dans la nature en exploitant une faille zero-day dans le logiciel.<\/p>\n<p>La soci\u00e9t\u00e9 ta\u00efwanaise <a rel=\"nofollow noopener\" href=\"https:\/\/www.qnap.com\/en\/security-advisory\/qsa-22-24\" target=\"_blank\">a dit<\/a> il a d\u00e9tect\u00e9 les attaques du 3 septembre et que &#8220;la campagne semble cibler les appareils NAS QNAP ex\u00e9cutant Photo Station avec une exposition \u00e0 Internet&#8221;.<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/strike-d\" target=\"_blank\" title=\"DevOps backupy\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/08\/La-nouvelle-vulnerabilite-Amazon-Ring-aurait-pu-exposer-tous-vos.png\" width=\"300\" height=\"250\" \/><\/a><\/div>\n<p>Le probl\u00e8me a \u00e9t\u00e9 r\u00e9solu dans les versions suivantes &#8211;<\/p>\n<ul>\n<li>QTS 5.0.1\u00a0: Photo Station 6.1.2 et versions ult\u00e9rieures<\/li>\n<li>QTS 5.0.0\/4.5.x : Photo Station 6.0.22 et versions ult\u00e9rieures<\/li>\n<li>QTS 4.3.6\u00a0: Photo Station 5.7.18 et versions ult\u00e9rieures<\/li>\n<li>QTS 4.3.3 : Photo Station 5.4.15 et versions ult\u00e9rieures<\/li>\n<li>QTS 4.2.6\u00a0: Photo Station 5.2.14 et versions ult\u00e9rieures<\/li>\n<\/ul>\n<div class=\"separator\" style=\"clear: both\"><img decoding=\"async\" alt=\"D\u00e9faut de la station photo\" border=\"0\" data-original-height=\"384\" data-original-width=\"728\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/09\/1662521198_401_QNAP-met-en-garde-contre-de-nouvelles-attaques-de-rancongiciel.jpg\" title=\"D\u00e9faut de la station photo\" \/><\/div>\n<p>Les d\u00e9tails de la faille restent flous pour le moment, la soci\u00e9t\u00e9 conseillant aux utilisateurs de d\u00e9sactiver la redirection de port sur les routeurs, d&#8217;emp\u00eacher l&#8217;acc\u00e8s aux p\u00e9riph\u00e9riques NAS sur Internet, de mettre \u00e0 niveau le micrologiciel NAS, d&#8217;appliquer des mots de passe forts pour les comptes d&#8217;utilisateurs et d&#8217;effectuer des sauvegardes r\u00e9guli\u00e8res pour emp\u00eacher perte de donn\u00e9es.<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/crowd-mid-d\" target=\"_blank\" title=\"CyberSecurity\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/08\/Google-Cloud-bloque-une-attaque-DDoS-record-de-46-millions.png\" width=\"728\" height=\"90\" \/><\/a><\/div>\n<p>Le dernier d\u00e9veloppement marque la quatri\u00e8me s\u00e9rie d&#8217;attaques DeadBolt visant les appliances QNAP depuis janvier 2022, suivies d&#8217;incursions similaires en mai et juin.<\/p>\n<p>&#8220;Le NAS QNAP ne doit pas \u00eatre directement connect\u00e9 \u00e0 Internet&#8221;, a d\u00e9clar\u00e9 la soci\u00e9t\u00e9. <a rel=\"nofollow noopener\" href=\"https:\/\/www.qnap.com\/en\/security-news\/2022\/take-immediate-action-to-update-photo-station-to-the-latest-available-version\" target=\"_blank\">a dit<\/a>.  &#8220;Nous recommandons aux utilisateurs d&#8217;utiliser la fonctionnalit\u00e9 myQNAPcloud Link fournie par QNAP ou d&#8217;activer le service VPN. Cela peut renforcer efficacement le NAS et r\u00e9duire les risques d&#8217;attaque.&#8221;<\/p>\n<p><\/p>\n<\/div>\n<p><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/09\/qnap-warns-of-new-deadbolt-ransomware.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>QNAP a publi\u00e9 un nouvel avis exhortant les utilisateurs de ses p\u00e9riph\u00e9riques de stockage en r\u00e9seau (NAS) \u00e0 passer \u00e0 la derni\u00e8re version de Station photo suite \u00e0 une nouvelle vague d&#8217;attaques de ransomware DeadBolt dans la nature en exploitant une faille zero-day dans le logiciel. La soci\u00e9t\u00e9 ta\u00efwanaise a dit il a d\u00e9tect\u00e9 les [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":352291,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[8074,4168,841,4158,4165,4161,5264,29063,9048,525,4157,4159,4171,4170,4167,4955,4160,120,4163,4162,1588,27510,56078,4172,4169,7769,4166,4164],"class_list":["post-352290","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-attaques","tag-comment-pirater","tag-contre","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-deadbolt","tag-exploitant","tag-faille","tag-garde","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-logiciel-malveillant-de-ransomware","tag-met","tag-mises-a-jour-de-la-cybersecurite","tag-nouvelles","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-photo","tag-qnap","tag-rancongiciel","tag-securite-informatique","tag-securite-internet","tag-station","tag-violation-de-donnees","tag-vulnerabilite-logicielle"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/352290","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=352290"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/352290\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/352291"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=352290"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=352290"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=352290"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}