Security News > 2021 > August > NAS devices under attack: How to keep them safe?

NAS devices under attack: How to keep them safe?
2021-08-17 04:30

Palo Alto Networks researchers recently found some 240,000 QNAP and approximately 3,500 Synology NAS devices exposed to the public internet.

Since the start of the year, a variety of NAS devices have been hit by ransomware gangs, botnet operators, as well as attackers who simply decided to wipe the data without warning and install a trojan.

"These attacks leverage a number of already infected devices to try and guess common administrative credentials, and if successful, will access the system to install its malicious payload, which may include ransomware. Devices infected may carry out additional attacks on other Linux based devices, including Synology NAS.".

According to Bitdefender, the number of vulnerabilities found in NAS devices increased by 198% YoY from 2019 to 2020.

The April attacks against QNAP NAS devices were successful because the attackers leveraged what was, at that time, a zero-day exploit of an upatched vulnerability.

NAS vendors and their community forums provide instructions on how to do that, as well as other general advice on how to keep one's NAS devices safe.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/qhZFGOp2CC4/