{"id":27835,"date":"2022-08-16T14:38:19","date_gmt":"2022-08-16T06:38:19","guid":{"rendered":"https:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/?p=27835"},"modified":"2022-08-16T14:46:07","modified_gmt":"2022-08-16T06:46:07","slug":"27835","status":"publish","type":"post","link":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/archives\/27835","title":{"rendered":"\u3010\u6f0f\u6d1e\u9810\u8b66\u3011\u5a01\u806f\u901a\u79d1\u6280(QNAP)\u5075\u6e2c\u5230\u6709\u4e0d\u6cd5\u5206\u5b50\u6feb\u7528\u65e5\u524d\u5df2\u4fee\u88dc\u7684\u5b89\u5168\u6027\u554f\u984c\u00a0(qsa-21-57)\u00a0\u767c\u52d5\u7db2\u8def\u653b\u64ca"},"content":{"rendered":"<h3 style=\"text-align: center;\">\u6559\u80b2\u6a5f\u69cbANA\u901a\u5831\u5e73\u53f0<\/h3>\n<table border=\"1\">\n<tbody>\n<tr>\n<td width=\"80\">\u767c\u4f48\u7de8\u865f<\/td>\n<td>TACERT-ANA-2022052309054747<\/td>\n<td width=\"80\">\u767c\u4f48\u6642\u9593<\/td>\n<td>2022-05-23 09:09:48<\/td>\n<\/tr>\n<tr>\n<td>\u4e8b\u6545\u985e\u578b<\/td>\n<td>ANA-\u6f0f\u6d1e\u9810\u8b66<\/td>\n<td>\u767c\u73fe\u6642\u9593<\/td>\n<td>2022-05-13 09:09:48<\/td>\n<\/tr>\n<tr>\n<td>\u5f71\u97ff\u7b49\u7d1a<\/td>\n<td>\u4e2d<\/td>\n<td><\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td colspan=\"4\">[\u4e3b\u65e8\u8aaa\u660e:]\u3010\u6f0f\u6d1e\u9810\u8b66\u3011\u5a01\u806f\u901a\u79d1\u6280(QNAP)\u5075\u6e2c\u5230\u6709\u4e0d\u6cd5\u5206\u5b50\u6feb\u7528\u65e5\u524d\u5df2\u4fee\u88dc\u7684\u5b89\u5168\u6027\u554f\u984c\u00a0(qsa-21-57)\u00a0\u767c\u52d5\u7db2\u8def\u653b\u64ca<\/td>\n<\/tr>\n<tr>\n<td colspan=\"4\">[\u5167\u5bb9\u8aaa\u660e:]<\/p>\n<p>\u8f49\u767c \u53f0\u7063\u96fb\u8166\u7db2\u8def\u5371\u6a5f\u8655\u7406\u66a8\u5354\u8abf\u4e2d\u5fc3(TWCERT\/CC)<\/p>\n<p>\u5a01\u806f\u901a\u00ae\u79d1\u6280 (QNAP\u00ae Systems, Inc.) \u8fd1\u65e5\u5075\u6e2c\u5230 DEADBOLT Ransomware \u767c\u52d5\u65b0\u7684\u653b\u64ca\u3002\u4f9d\u64da QNAP \u7522\u54c1\u8cc7\u5b89\u4e8b\u4ef6\u61c9\u8b8a\u5718\u968a (QNAP PSIRT) \u7684\u8abf\u67e5\u986f\u793a\uff1a\u6b64\u6b21\u653b\u64ca\u9396\u5b9a\u4f7f\u7528 QTS 4.3.6 \u8207 QTS 4.4.1 \u7684 NAS \u8a2d\u5099\uff0c\u53d7\u5f71\u97ff\u6a5f\u578b\u4ee5 TS-x51 \u7cfb\u5217\u53ca TS-x53 \u7cfb\u5217\u70ba\u4e3b\u3002QNAP \u547c\u7c72\u6240\u6709 NAS \u7528\u6236\u5118\u901f\u6aa2\u67e5\u4e26\u66f4\u65b0 QTS \u81f3\u6700\u65b0\u7248\u672c\uff0c\u4e26\u907f\u514d\u5c07 NAS \u66b4\u9732\u65bc\u5916\u7db2\u3002<\/p>\n<p>\u60c5\u8cc7\u5206\u4eab\u7b49\u7d1a: WHITE(\u60c5\u8cc7\u5167\u5bb9\u70ba\u53ef\u516c\u958b\u63ed\u9732\u4e4b\u8cc7\u8a0a)<\/td>\n<\/tr>\n<tr>\n<td colspan=\"4\">[\u5f71\u97ff\u5e73\u53f0:]<\/p>\n<p>\u53d7\u5f71\u97ff\u4e4bQNAP\u8a2d\u5099\u5982\u4e0b\uff1a<\/p>\n<p>QNAP\u6a5f\u578b TS-x51 \u7cfb\u5217\u53ca TS-x53 \u7cfb\u5217\u70ba\u4e3b<\/p>\n<p>\u53d7\u5f71\u97ff\u4e4bQNAP\u8edf\u9ad4\u5982\u4e0b\uff1a<\/p>\n<p>\u4f7f\u7528QTS 4.3.6 \u8207 QTS 4.4.1 \u7684 NAS \u8a2d\u5099\u3002<\/td>\n<\/tr>\n<tr>\n<td colspan=\"4\">[\u5efa\u8b70\u63aa\u65bd:]<\/p>\n<p>\u5efa\u8b70\u4e0d\u7ba1\u4f55\u7a2e\u6a5f\u578b\uff0c\u56e0\u5118\u901f\u6aa2\u67e5\u4e26\u66f4\u65b0QTS\u81f3\u6700\u65b0\u7248\u672c\uff0c\u4e26\u907f\u514d\u5c07 NAS \u66b4\u9732\u65bc\u5916\u7db2\u3002<\/td>\n<\/tr>\n<tr>\n<td colspan=\"4\">[\u53c3\u8003\u8cc7\u6599:]<\/p>\n<ol>\n<li>\u7acb\u5373\u63a1\u53d6\u8cc7\u5b89\u9632\u8b77\u884c\u52d5\uff0c\u66f4\u65b0 QTS \u81f3\u6700\u65b0\u7248\u672c<\/li>\n<li><a href=\"https:\/\/www.qnap.com\/zh-tw\/security-advisory\/qsa-21-57\" target=\"_blank\" rel=\"noopener noreferrer\">https:\/\/www.qnap.com\/zh-tw\/security-advisory\/qsa-21-57<\/a><\/li>\n<li>\u7acb\u5373\u901f\u66f4\u65b0 QTS \u81f3\u6700\u65b0\u7248\u672c\u53ca\u907f\u514d\u5c07 NAS \u66b4\u9732\u65bc\u5916\u7db2\uff0c\u5171\u540c\u6253\u64ca\u7db2\u8def\u72af\u7f6a<\/li>\n<li>\u6709\u95dc\u300c\u5efa\u8b70\u7248\u672c\u300d\u529f\u80fd\u4e4b\u8aaa\u660e<\/li>\n<\/ol>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>\u6559\u80b2\u6a5f\u69cb\u8cc7\u5b89\u901a\u5831\u61c9\u8b8a\u5c0f\u7d44<br \/>\n\u7db2\u5740\uff1a<a href=\"https:\/\/info.cert.tanet.edu.tw\/\" target=\"_blank\" rel=\"noopener noreferrer\">https:\/\/info.cert.tanet.edu.tw\/<\/a><br \/>\n\u5c08\u7dda\u96fb\u8a71\uff1a07-5250211<br \/>\n\u7db2\u8def\u96fb\u8a71\uff1a98400000<br \/>\nE-Mail\uff1a<a href=\"https:\/\/mail.ntpc.edu.tw\/cgi-bin\/genMail?adr=service@cert.tanet.edu.tw&amp;\" target=\"_blank\" rel=\"noopener noreferrer\">service@cert.tanet.edu.tw<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u6559\u80b2\u6a5f\u69cbANA\u901a\u5831\u5e73\u53f0 \u767c\u4f48\u7de8\u865f TACERT-ANA-2022052309054747 \u767c\u4f48\u6642\u9593 2022-05-23 09:09:48 \u4e8b\u6545\u985e\u578b ANA-\u6f0f\u6d1e\u9810\u8b66 \u767c\u73fe\u6642\u9593 2022-05-13 09:09:48 \u5f71\u97ff\u7b49\u7d1a \u4e2d [\u4e3b\u65e8\u8aaa\u660e:]\u3010\u6f0f\u6d1e\u9810\u8b66\u3011\u5a01\u806f\u901a\u79d1\u6280(QNAP)\u5075\u6e2c\u5230\u6709\u4e0d\u6cd5\u5206\u5b50\u6feb\u7528\u65e5\u524d\u5df2\u4fee\u88dc\u7684\u5b89\u5168\u6027\u554f\u984c (qsa-21-57) \u767c\u52d5\u7db2\u8def\u653b\u64ca [\u5167\u5bb9\u8aaa\u660e:]<\/p>\n<p>\u8f49\u767c \u53f0\u7063\u96fb\u8166\u7db2\u8def\u5371\u6a5f\u8655\u7406\u66a8\u5354\u8abf\u4e2d\u5fc3(TWCERT\/CC)<\/p>\n<p>\u5a01\u806f\u901a\u00ae\u79d1\u6280 (QNAP\u00ae Systems, Inc.) \u8fd1\u65e5\u5075\u6e2c\u5230 DEADBOLT Ransomware \u767c\u52d5\u65b0\u7684\u653b\u64ca\u3002\u4f9d\u64da QNAP \u7522\u54c1\u8cc7\u5b89\u4e8b\u4ef6\u61c9\u8b8a\u5718\u968a (QNAP PSIRT) \u7684\u8abf\u67e5\u986f\u793a\uff1a\u6b64\u6b21\u653b\u64ca\u9396\u5b9a\u4f7f\u7528 QTS 4.3.6 \u8207 QTS 4.4.1 \u7684 NAS \u8a2d\u5099\uff0c\u53d7\u5f71\u97ff\u6a5f\u578b\u4ee5 TS-x51 \u7cfb\u5217\u53ca TS-x53 \u7cfb\u5217\u70ba\u4e3b\u3002QNAP \u547c\u7c72\u6240\u6709 NAS \u7528\u6236\u5118\u901f\u6aa2\u67e5\u4e26\u66f4\u65b0 QTS \u81f3\u6700\u65b0\u7248\u672c\uff0c\u4e26\u907f\u514d\u5c07 NAS \u66b4\u9732\u65bc\u5916\u7db2\u3002<\/p>\n<p>\u60c5\u8cc7\u5206\u4eab\u7b49\u7d1a: WHITE(\u60c5\u8cc7\u5167\u5bb9\u70ba\u53ef\u516c\u958b\u63ed\u9732\u4e4b\u8cc7\u8a0a) [\u5f71\u97ff\u5e73\u53f0:]<\/p>\n<p>\u53d7\u5f71\u97ff\u4e4bQNAP\u8a2d\u5099\u5982\u4e0b\uff1a<\/p>\n<p> [&#8230;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[6],"tags":[],"_links":{"self":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts\/27835"}],"collection":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/comments?post=27835"}],"version-history":[{"count":0,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts\/27835\/revisions"}],"wp:attachment":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/media?parent=27835"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/categories?post=27835"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/tags?post=27835"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}