Cyber Attack

Huge posted:

I also forgot to mention,..

Don't expose your NAS to the 'net unless you really need to.

i can see my NetGear NAS under 'Network' on my PC. Is this what you mean by 'exposed'?

If so, how do i un-expose it? Right now my NAS drive is connected to a netgear switch, which in turn is connected to the router.

enjoy

ken

I also don't what is meant about 'exposing' a NAS to the internet. If you have your NAS on your local network which has a router to the internet, then there will be an iproute to the internet. However unsolicited incoming ip traffic won't go to the NAS unless you specifically set up your router to do this.

i recommend keeping your NAS connected to the internet via your home router, and that way it can be kept updated with security and firmware updates, as well as keeping NTP upto date for accurate time stamping and sending status emails for backups etc. However don't run software on your NAS that you are not comfortable with.

Simon

Hi, technically, it's specifically exposing services from the NAS to be accessed from the internet.   Exposing a web server to access from the internet shouldn't be a problem provided you only serve static HTML pages, but much beyond this you are increasing the risk.  This particularly a problem using file sharing from the NAS across the internet or serving web pages with active or remote code or execution of remotely configured SQL code.

Several ransom ware viruses have been written to exploit this and other services that expose active code.  The first was Synolocker, but other have been written to exploit vulnerabilities in other NAS systems.  Sometimes they can be uploaded via browsers on PCs in particular circumstances where the PC has vulnerabilities anyway, but this is easier to stop in the PC as any good A/V package will detect them as they're not polymorphic on the PC.