QNAP Warns of New Crypto-Mining Malware Targeting NAS Devices


The Taiwan-based company, which is well known for its NAS and professional network video recorder (NVR) solutions, on Tuesday urged users to take immediate action to keep their devices protected against the new threat.

QNAP says it is currently investigating reports where attackers infect NAS appliances with a Bitcoin miner that can be identified by the presence of the [oom_reaper] process on a compromised device.

“Once a NAS is infected, CPU usage becomes unusually high where a process named ‘[oom_reaper]’ could occupy around 50% of the total CPU usage. This process mimics a kernel process but its PID is usually greater than 1000,” QNAP explains.