2 min read

NAS Devices Are Prime Targets for Criminals, Secure them As Soon as Possible

Silviu STAHIE

March 14, 2022

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
NAS Devices Are Prime Targets for Criminals, Secure them As Soon as Possible

A network-attached device (NAS) is a shared storage solution that people can use at home. And just like their commercial counterparts, attackers target them to steal that precious data.

Having your own backup or storage solution on-premise sounds amazing. You don’t have to pay other companies for online space, you can expand it, and you have complete control of your data. It sounds like something everyone should own. But there’s a catch.

Even the most basic NAS solution is not that cheap. Depending on the hardware, whether it’s prebuilt or custom-made by users, it’s going to cost you. Just buying the NAS is not enough, as it’s usually recommended to house it in a secure network, which in turn requires better hardware. Making matters worse, hackers always keep in mind all this effort. A NAS user is likely to keep important stuff if he went to all the trouble of setting everything up.

Ransomware is the primary danger

One of the most common stories people notice in the news is about NAS devices infected with ransomware. Nobody wants their data locked away in their home by ransomware, with no means of recovery. It’s possible to keep a backup for a backup, but it’s not common.

Some manufacturers have been hit more than others. Despite numerous patch releases in the past couple of years, ransomware infections remain a big threat. One problem is that people don’t install the latest patches released by manufacturers or are too cavalier with their NAS devices.

As a general rule, it’s not a good idea to have the NAS exposed directly to the internet, let alone leave open some ports or services. Ideally, any connection to the home NAS should be made over VPN, but the truth of the matter is that many users take network and NAS security for granted.

Attacks on NAS devices will increase

Despite the price, NAS has become increasingly popular in the commercial sector, and even small businesses might choose to use something similar. Increased demand for NAS also means a larger attack surface, which directly translates to more incidents and more time devoted by criminals to find ways to compromise those devices

Realizing the paramount importance of your NAS is the first step towards securing your data. Once you understand just how vulnerable and important the date is, taking the necessary steps to safely use a NAS becomes imperative.

· Keep your NAS up to date and install the latest patches as soon as possible.
· If your NAS reaches end of life, replace it as quickly as possible. Manufacturers rarely, if ever, release patches for EOL devices.
· Close opened ports and shut down services you are not actively using.
· Don’t expose the NAS to the internet unless it’s through a VPN server.

Of course, one of the most important measures you can take is to use an ISP that implements Bitdefender’s IoT Security Platform. One of the most important features of the platform is to inform users of possible vulnerabilities in any house or network, allowing users to make the right decisions in terms of security.

tags


Author



Right now

Top posts

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

January 26, 2023

2 min read
Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

January 19, 2023

4 min read
Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

November 29, 2022

2 min read
How to monitor your online privacy during your Thanksgiving trip

How to monitor your online privacy during your Thanksgiving trip

November 22, 2022

3 min read
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

November 16, 2022

6 min read
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

November 14, 2022

5 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Meta Pays Out Bounties for Account Takeover and Two-Factor Authentication Bypass Exploits Meta Pays Out Bounties for Account Takeover and Two-Factor Authentication Bypass Exploits
Silviu STAHIE

January 31, 2023

1 min read
Hackers steal 10 million customer details from JD Sports Hackers steal 10 million customer details from JD Sports
Graham CLULEY

January 30, 2023

2 min read
North Korean Hackers Tried to Launder $100 Million in Crypto Stolen in 2022 North Korean Hackers Tried to Launder $100 Million in Crypto Stolen in 2022
Silviu STAHIE

January 25, 2023

1 min read