A new variant of eCh0raix ransomware is found to be encrypting not only QNAP but Synology network-attached storage (NAS) too. The ransomware operators exploit CVE-2021-28799, a vulnerability providing attackers with access to hard-coded credentials, i.e. a backdoor account to encrypt QNAP devices. For Synology device they attacker brute force commonly used and default passwords to gain access and encrypt there way out.
Older Version of eChoraix ransomware can be found here
New eCh0raix Ransomware Variant Signatures
New eCh0raix Ransomware Variant Download