Qlocker is a ransomware group that first emerged with widespread attacks in April 2021, exclusively targeting QNAP Network Attached Storage (NAS) devices. The group's primary motivation is financial gain, achieved by demanding Bitcoin ransoms for decryption keys. What sets Qlocker apart is its unique operational method: instead of deploying custom ransomware binaries, it abuses the legitimate 7-zip archival utility built into QNAP systems to encrypt files. This tactic allows the group to operate without introducing traditional malware, making detection challenging. Although initially believed to have ceased operations in May 2021, Qlocker resurfaced with new campaigns in early 2022.

URLs nuevas detectadas en IntelTracker