Bitcoin Forum
May 12, 2024, 05:12:26 PM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Other > Beginners & Help > A hacker gang is wiping Lenovo NAS devices and asking for ransoms
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: A hacker gang is wiping Lenovo NAS devices and asking for ransoms  (Read 156 times)
cryptomaniac_xxx (OP)
Hero Member
*****
Offline Offline

Activity: 1498
Merit: 566


View Profile
June 30, 2020, 10:16:40 AM
Merited by DdmrDdmr (1)
 #1
Anyone here using the old Lenovo NAS? if yes then you could be a potential victims. The ransom is 0.03BTC.

Quote
A hacker gang is wiping Lenovo NAS devices and asking for ransoms

A hacker group going by the name of 'Cl0ud SecuritY' is breaking into old LenovoEMC (formerly Iomega) network-attached storage (NAS) devices, wiping files, and leaving ransom notes behind asking owners to pay between $200 and $275 to get their data back.

Attacks have been happening for at least a month, according to entries on BitcoinAbuse, a web portal where users can report Bitcoin addresses abused in ransomware, extortions, cybercrime, and other online scams.

Attacks appear to have targeted only LenovoEMC/Iomega NAS devices that are exposing their management interface on the internet without a password.

https://www.zdnet.com/article/a-hacker-gang-is-wiping-lenovo-nas-devices-and-asking-for-ransoms/


Sample ransom note:

Hackers email account:
Code:
cloud@mail2pay.com

Hackers bitcoin address:
Code:
1DN8Zhiz7maYKvWTa3a8t4CMj4xSJuQtKQ
1715533946
Hero Member
*
Offline Offline

Posts: 1715533946

View Profile Personal Message (Offline)

Ignore
1715533946
1715533946
Reply with quote  #2
1715533946
Report to moderator
Each block is stacked on top of the previous one. Adding another block to the top makes all lower blocks more difficult to remove: there is more "weight" above each block. A transaction in a block 6 blocks deep (6 confirmations) will be very difficult to remove.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
1715533946
Hero Member
*
Offline Offline

Posts: 1715533946

View Profile Personal Message (Offline)

Ignore
1715533946
1715533946
Reply with quote  #2
1715533946
Report to moderator
ABCbits
Legendary
*
Offline Offline

Activity: 2870
Merit: 7496


Crypto Swap Exchange


View Profile
June 30, 2020, 12:47:46 PM
Merited by DdmrDdmr (1)
 #2
The NAS is already discounted and stopped receiving support 2 years ago, so it's not surprising it happened. Same things happened with users and company who insist using Windows XP.

But in this case, the data still could be recovered easily as long as the hacker doesn't use secure way to delete victim's data.
█▀▀▀











█▄▄▄
▀▀▀▀▀▀▀▀▀▀▀
e
▄▄▄▄▄▄▄▄▄▄▄
█████████████
████████████▄███
██▐███████▄█████▀
█████████▄████▀
███▐████▄███▀
████▐██████▀
█████▀█████
███████████▄
████████████▄
██▄█████▀█████▄
▄█████████▀█████▀
███████████▀██▀
████▀█████████		▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
c.h.
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
▀▀▀█











▄▄▄█
▄██████▄▄▄
█████████████▄▄
███████████████
███████████████
███████████████
███████████████
███░░█████████
███▌▐█████████
█████████████
███████████▀
██████████▀
████████▀
▀██▀▀
Pages: [1]
  Print  
Bitcoin Forum > Other > Beginners & Help > A hacker gang is wiping Lenovo NAS devices and asking for ransoms
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!