Taiwanese {hardware} vendor QNAP has added a Safety Heart with ransomware safety capabilities to the most recent model of its QTS working system for network-attached storage (NAS) units.
The brand new Safety Heart in QTS 5.2 displays for suspicious file operations to detect and block ransomware threats.
If any uncommon exercise is detected, prospects can select to have volumes routinely set to read-only mode to forestall information from being modified, create quantity snapshots to revive your complete quantity when wanted, and pause quantity snapshot scheduling to keep away from crowding out the cupboard space with irregular snapshot information.
“This function actively displays file actions to preemptively defend information safety,” the corporate revealed in a press launch on Tuesday.
“Upon detecting suspicious file habits, the system swiftly implements protecting measures (corresponding to backup or blocking) to mitigate dangers and stop information loss from ransomware threats, assaults, or human error.”
The newest QTS model additionally provides quicker NAS startup and shutdown speeds (by as much as 30%), assist for TCG-Ruby self-encrypting drives (SED), in addition to speedier backup and restoration of Home windows programs, disks, folders, and information to their QNAP NAS by way of the NetBak PC Agent utility.
NAS units are sometimes used for backing up and sharing delicate information, which makes them helpful targets for attackers who ceaselessly goal them to steal or encrypt helpful paperwork or deploy information-stealing malware.
Lately, malicious actors have focused QNAP units in DeadBolt, Checkmate, and eCh0raix ransomware campaigns, abusing safety vulnerabilities to encrypt information on Web-exposed and weak NAS units.
QNAP repeatedly warns prospects about brute-force assaults in opposition to NAS units uncovered on-line, which ceaselessly result in ransomware assaults [1, 2, 3].
The NAS maker has additionally beforehand shared mitigation measures for purchasers with Web-exposed units, asking them to:
- Disable the router’s Port Forwarding operate by going to the router’s administration interface, checking the Digital Server, NAT, or Port Forwarding settings, and turning off the port forwarding setting of the NAS administration service port (ports 8080 and 433 by default).
- Disable the QNAP NAS’ UPnP operate by going to myQNAPcloud on the QTS menu, clicking “Auto Router Configuration,” and unselecting “Allow UPnP Port forwarding.”
QNAP prospects must also use this step-by-step process to alter the system port quantity, toggle off SSH and Telnet connections, allow IP and account entry safety, and alter default system passwords.