How Did My NAS Get Hacked?

Episode 1719 (1:11:30)

Charles from Marshall, TX
Synology

Charles has a pair of Synology NAS storage devices and one was hit by ransomware. Leo suggests completely format it and rebuild and reinstall everything from the other backup. But Charles wants to know how it happened. Leo says that once he logs into the NAS, it's on the network, and can be bitten. Leo says that if his Synology is visible to the public internet, then he'll need to really limit it to things he really needs.  The more services he turns on, the more exposed he is. Leo turns on SSH to keep it protected. Also, turn on IP blocking after a certain number of login attempts. And make the password longer and stronger. Also, keep the NAS up to date. Run Security Advisor to guard against weak passwords.