Qnap has released a security notice regarding all NAS users. Due to widespread ransomware and brute-force attacks on network equipment, devices with unsecured internet connections are especially vulnerable. All customers are advised to follow the steps below to ensure the security of their devices.
Check if your NAS is at risk
Open the Security Counselor on your nas. If your device is at high risk, the following message will be displayed: “The System Administration service can be directly accessible from an external IP address via the following protocols: HTTP”.
Disable port forwarding
Go to your router’s management interface and check the settings for Virtual Server, NAT or Port Forwarding. Disable the port forwarding setting of your nas management port, by default these are ports 8080 and 433.
In the QTS menu, go to myQNAPcloud, click Auto Router Configuration, and uncheck Enable UPnP Port forwarding.
These measures ensure that the Universal Plug and Play protocol does not set port forwarding automatically, but must be done manually. For example, attackers have to overcome an extra barrier to get into your nas.
Source: Hardware Info Compleet by nl.hardware.info.
*The article has been translated based on the content of Hardware Info Compleet by nl.hardware.info. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!
*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.
*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!