DeadBolt was a ransomware strain specifically targeting QNAP and Synology NAS devices, exploiting vulnerabilities to encrypt files and demand ransom payments in cryptocurrency. It first emerged in January 2022. The ransom note demanded a 0.03 BTC ($1,100 US) payment (later 0.05 BTC) in return for a decryption key. What made DeadBolt unique was its decryption key acquisition process. Unlike many other ransomware variants, DeadBolt required victims to make a ransom payment to a specific Bitcoin address. Once the payment is completed, DeadBolt would send the decryption key back to the same Bitcoin address through an OP_RETURN message.
DeadBolt was a ransomware strain specifically targeting QNAP and Synology NAS devices, exploiting vulnerabilities to encrypt files and demand ransom payments in cryptocurrency. It first emerged in January 2022. The ransom note demanded a 0.03 BTC ($1,100 US) payment (later 0.05 BTC) in return for a decryption key. What made DeadBolt unique was its decryption key acquisition process. Unlike many other ransomware variants, DeadBolt required victims to make a ransom payment to a specific Bitcoin address. Once the payment is completed, DeadBolt would send the decryption key back to the same Bitc...