Reply With QuoteAl Bundy (01-02-22),eaglem (02-02-22),efab (01-02-22),Landytrack (02-02-22)
Qnap warning
If you use a qnap nas check all your security settings and dont use the fkn cloud etc
mine just got fkn smashed by ransomware 12tb destroyed including all my work pictures etc
Al Bundy (01-02-22),eaglem (02-02-22),efab (01-02-22),Landytrack (02-02-22)
| Look Here -> |
I got cloud off, firewall up, connect via VPN only.
Firewall on router as well.
usages.kangaroos.sound
eaglem (03-02-22)
Never used a cloud in my life.
Offline baby, always offline with important stuff.
And of course I never touch any Adobe creative cloud crap, plenty of open source or low cost software that does the same offline.
All my work and hobby files I create are air gaped as are the work stations I use for them.
I don't understand the mentality these days that pushes all the sheep to be always connected to everything. Unless you are a web designer/info-provider, what's the point?
Update: A deletion of features that work well and ain't broke but are deemed outdated in order to add things that are up to date and broken.
Compatibility: A word soon to be deleted from our dictionaries as it is outdated.
Humans: Entities that are not only outdated but broken... AI-self-learning-update-error...terminate...terminate...
enf (01-02-22),Landytrack (02-02-22)
FirewallON
QuFirewall has denied access to 238107 events in the last 24 hours.
theyre definately giving it a hammering....
same here though I don't use the vpn, might look into setting that upOriginally Posted by hoe
On my Macs I run the Little Snitch and Lulu firewalls at the same time, not even Apple system data gets out. Only one Mac is permanently online and used for web activities and DLs.
The Windows are permanently offline but W11 insider needs to go once every 6 months online to get the update before the time bomb.
It is a virtual machine, so once I got the fresh one I just clone this virgin machine and whack all my dodgy software on the copy. That way nothing gets to see the net.
Last edited by Uncle Fester; 01-02-22 at 07:32 PM.
Update: A deletion of features that work well and ain't broke but are deemed outdated in order to add things that are up to date and broken.
Compatibility: A word soon to be deleted from our dictionaries as it is outdated.
Humans: Entities that are not only outdated but broken... AI-self-learning-update-error...terminate...terminate...
Make sure dlna, bonjour etc. And anything you don't need is disabled.
Https only and disable Admin account.
usages.kangaroos.sound
ok thanks for the tip appreciate it
other thing is my qnap doesn't go to the web except fr the odd update.
everything goes through a linux box that I download to and then I swap it to the server if I want it.
All other PC's run sophos and malwarebytes. I know nothing is perfect but I have got away with it for the last 30 years
Missus business is on there and other stuff - nah no porn, too old for that shit
can't afford to lose 20GB of stuff that has taken years to collect
Landytrack (02-02-22)
Totally concur. Nothing on the cloud as hd space is virtually free these days IMO....
Use a good firewall and a VPN. I have a DPN in the works as well.
The fact that there's a highway to hell and a stairway to heaven says a lot about the anticipated traffic flow.
Landytrack (02-02-22),Uncle Fester (03-02-22)
How are they targeting you? Do these qnap NAS squawk their existence to the 'net?
I thought people stopped doing that 20 years ago?
Conflicts from 2 firewalls trying to monitor the same things at the same time meant some connections that should have been blocked were missed, that sort of thing?
The exception being 1 hardware and 1 software firewall, and that used to do pretty much nothing better but slow the system down.
I do not acknowledge the so-called traditional custodians of the land and waters on which we operate.
Stop using acronyms!!
Connectivity and portability is the point. Having the ability to access and retrieve data across multiple sites, on multiple devices, is a necessity in many businesses - and for many personal users.
Default settings are set so pretty much everything works out of the box.
You really need to disable everything and only enable what you really need.
I was a bit slack and left windows networking and dlna enabled.
I suspect they are using Windows as a back door.....
Yep, just checked. 53 events in the last hour, since I disabled Windows networking......
usages.kangaroos.sound
Last edited by hoe; 01-02-22 at 09:20 PM.
Hmm..that's still about 1 attempt per minute ; I see in their source code they've hacked net-snmp (I've not checked the kernel source)...that's be my first hunch (deny snmp outbound)...
Were you on latest firmware?
You should enable auto updates to get latest security patches, just like Windows /android/Linux etc....
Looks like they are getting in via networking...
usages.kangaroos.sound
yep was all uptodate dlna disabled etc looks like it came through
qnap store and app was installed and then a new user account and directory installed
We may never know ~ qnap are a cunch of bunts in that they never hoist a CVE on things like this, only an 'in house' vulnerability ticket...why?.... a CVE requires disclosure from qnap detailing how the vulnerability was introduced, and how the exploit works. In my book, no peer review of a linux based OS exploit/vulnerability, means I have no confidence in the OS builder ; they're hiding something
Also....the auto update feature necessitates an inet connection...go figure =)
thats the thing to do updates it needs to be live online and when i went through the logs'that is when it come throughWe may never know ~ qnap are a cunch of bunts in that they never hoist a CVE on things like this, only an 'in house' vulnerability ticket...why?.... a CVE requires disclosure from qnap detailing how the vulnerability was introduced, and how the exploit works. In my book, no peer review of a linux based OS exploit/vulnerability, means I have no confidence in the OS builder ; they're hiding something
Also....the auto update feature necessitates an inet connection...go figure =)
and installed an app .All of a sudden there were 2 new profiles and directories.
needless to say this unit is being binned and will be looking at a synology unit.
I'd probably install another OS (if possible, don't know what model you have)
I've had my unit for almost 15 years and never had a problem, it may just be luck
the latest firmware for my model fixed the fan issue where they always ran full bore when temp got over 25 degrees.
Now it is quiet as until the house really heats up, even pulled it apart to make sure the fans still work
still it gave me a chance to do the annual dust blowout of every nook and crany
Posting Permissions
Bookmarks