ASUSTOR - Website Management

Date:

Topic_id:

Subject:

Description:

content:

<h4>COURSE OBJECTIVES</h4>
Upon completion of this course you should be able to:
<ol>
<li>Mitigate ransomware and malware risks.</li>
<li>Disable unneeded and unnecessary services.</li>
</ol>
 
<h4>PREREQUISITES</h4>
Course Prerequisites:
N/A
Students are expected to have a working knowledge of:
N/A
 
<h4>OUTLINE</h4>
<a href="#rw1">1. What is Ransomware?</a>
<a href="#rw2">2. Prevention is better than regret</a>
<a href="#rw21">2.1 Mitigating the Risk</a>
<a href="#rw22">2.2 Protection on Desktops</a>
<a href="#rw3">3. Reacting to a Ransomware Attack</a>
 <hr /> 
<h4><a name="rw1"></a>1. What is Ransomware?</h4>
Ransomware is malicious software which encrypts your files and holds them for financial ransom. You’ll have to pay money to get data back and there is no guarantee a ransomware developer will honor their commitment after payment.
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116163529_53641.png" alt="" align="" width="700" height="452" />
 
<h4><a name="rw2"></a>2. Prevention is better than regret</h4>
The best way to ensure data security is to prevent attacks from taking hold in the first place. Keeping good backups is key to maintaining immunity from ransomware attacks and saving time and money. None of what is described in this article guarantees data restoration in the event of a malware attack and all data protection strategies carry a degree of risk. More strategies adopted means lower risk, but your mileage and situation may vary.
 
<a name="rw21"></a>2.1 Mitigating the Risk
 Changing Default Administrator Account Settings
Strong passwords are often neglected. This allows unauthorized parties to easily guess the password to inject code. ASUSTOR recommends changing your passwords regularly. Passwords should be at least eight digits with a mixture of upper case and lower case letters, numbers, and punctuation. The account named Admin should be disabled and a new admin account with a different name should be created in its place.
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116164000_10803.png" alt="" align="" width="800" height="554" />
 
<ul>
<li>Use a strong password and disable main Administrator account.</li>
<li>To change your password in ADM, click the administrator account in Access Control and press Edit.</li>
</ul>
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201118/20201118145437_47252.png" alt="" width="854" height="650" align="" />
 
<ul>
<li>To disable the admin account entirely, create a new admin account with a different name by clicking Add in Access Control.</li>
<li>Sign into the new admin account, head over to Access Control, click the original admin account, click edit, click Disable this account.</li>
</ul>
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116164509_43137.png" alt="" width="800" height="509" align="" />
 
<img src="https://www.asustor.com/images/kindeditor/image/20201116/20201116164611_83029.png" alt="" width="600" height="511" />
 
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116164703_43087.png" alt="" align="" width="600" height="514" />
 
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116164807_42466.png" alt="" width="800" height="660" align="" />
 
 Ensure ADM is Up-To-Date
ASUSTOR maintains its ADM operating system for ASUSTOR NAS devices. Updates come out for ADM on a regular basis, adding new features and fixing vulnerabilities. Remaining secure means always keeping your ASUSTOR NAS operating system and apps up to date.
<ul>
<li>To update ADM, click ADM Update in Settings. Press Update Now to update the OS to the latest version if ADM is not up to date.</li>
</ul>
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116164306_10714.png" alt="" width="800" height="498" align="" />
 
 Turn on ADM Defender
The all-new ADM Defender provides preset and customizable firewall profiles. Intelligent security protection can proactively prevent suspicious IP addresses from connecting to your NAS. ADM can also monitor network transmission packets to intercept suspicious network activities. The new design makes it easier to enable the firewall and additional security protections. ADM Defender proactively prevents suspicious connections, which can help further reduce the risks of malware and attacks to further improve data security.
 Introduced in ADM 5.0. Learn More: <a target="_blank" href="https://www.asustor.com/online/College_topic?topic=311" rel="noopener">College 311 - Using ADM Defender</a>
 
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910135830_ADM_Desktop.png" alt="" width="880" height="529" title="" align="" />
 
Enabling Intelligent security protection can proactively prevent suspicious IP addresses from connecting to your NAS.
<ul>
<li>Select [Intelligent Protection] [Auto Black List].</li>
<li>Select [Enable auto black list] and click on [Apply].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910142548_ADM_Defender_auto_blacklist_s1.png" alt="" width="880" height="528" title="" align="" />
 
<div class="panel-group" id="accordion" role="tablist" aria-multiselectable="true">
<div class="panel panel-default">
<div class="panel-heading" role="tab" id="heading1">
<h4 class="panel-title"><a role="button" data-toggle="collapse" data-parent="#accordion" href="#collapse1" aria-expanded="true" aria-controls="collapse1"> ADM 4.3:</a></h4>
</div>
<div id="collapse1" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<div class="panel-body"> 
Enable the Automatic blacklist to block repeated unauthorized login attempts. If any client’s IP address attempts to log in unsuccessfully a number of times within a certain period of time that client’s IP address will be blocked by ADM and can only be reversed by an authorized user.
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116164910_82780.png" alt="" width="900" height="489" align="" />
</div>
</div>
</div>
</div>
 
 Disabling Unnecessary Services
<ul>
<li>If SSH and SFTP are not needed, they should be disabled. They can be enabled when needed. SFTP is needed for ASUSTOR EZ Connect. SSH is not often needed by most customers.</li>
<li>If remote use is required, set only the ports that you need and whitelist only the devices that are supposed to connect. Set your NAS to deny connections from unknown devices.</li>
<li>Please ensure port forwarding settings found in EZ Router under Settings are appropriate for your use case. For services or apps that are only used within a local network, it is advised to keep these ports closed. Forwarding or otherwise opening ports can lead to an increased risk of attacks to your NAS. For maximum data safety, always ensure data is properly backed up.</li>
</ul>
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116164954_83932.png" alt="" width="900" height="552" align="" />
 
 Avoid Using Preset Ports
Changing default access ports adds a layer of complexity. Leaving ports at their default values remove a layer of security as changing them adds a layer of guesswork and frustrates attempts to gain access to an ASUSTOR NAS. Ports 8000 and 8001 are the default for the main ADM web UI and are a possible entry point if the port number is known.
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116165043_88252.png" alt="" width="900" height="536" align="" />
 
 Securing your NAS with an HTTPS Certificate
If you decide to connect to your NAS remotely from a free Wi-Fi network or public computer, ensure that your NAS is secured with a valid HTTPS certificate. Instructions for setting up HTTP Secure on your NAS can be found <a href="https://www.asustor.com/online/College_topic?topic=324">here</a>. HTTPS helps prevent attackers from sniffing passwords over a network and encrypts the data on a web page and personal information such as passwords. Only the website domain name is visible while content and pages are not.
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116164132_28008.png" alt="" align="" width="800" height="453" />
 
<a name="rw22"></a>2.2 Protection on Desktops
 Avoid Browsing Unknown Websites
Some websites may contain links that invite downloads of malicious software. Please exercise caution when visiting unknown websites.
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201118/20201118135057_13889.png" alt="" align="" width="750" height="474" />
 
 Protecting Against Desktop Ransomware
Some forms of ransomware found on PCs are able to infect files stored on a NAS. Some ransomware implementations are able to infect files on SMB shares and iSCSI drives. To mitigate risk of your computer infecting files on your NAS, ensure that SMB shares and iSCSI drives are disconnected with no passwords saved on your PC while only connecting to it using the NAS’s share name, ensure that your NAS has Btrfs enabled and regularly taking snapshots of your data, back up important data to a MyArchive drive and store it away from a network and have your NAS hibernate or remain off when not in use.
<ul>
<li>Using SAMBA on an ASUSTOR NAS is only intended for use on a local network. If you add your NAS into the Demilitarized Zone or DMZ on your router or otherwise forward the SAMBA default port, the chances of ransomware attacks or other threats to your NAS will be increased.</li>
</ul>
 
 Build up multiple backups
The best protection of your data is to back up files periodically. Provided that all the steps are taken, if an attack is successful, some or all data is likely to be easily restored. The 321 backup rule is a good rule of thumb in practicing data safety.
<ul>
<li>At least three copies of data.</li>
<li>Stored in two different types of storage spaces.</li>
<li>At least one backup on an offsite location.</li>
</ul>
 
ASUSTOR NAS devices provide a myriad of options for backing up and data safety. Several are listed below:
<ul>
<li>Backups to public cloud providers, including, but not limited to Dropbox, Google Drive, Microsoft OneDrive by DataSync Center.</li>
<li>MyArchive cold storage drives</li>
<li>Owning multiple NAS devices where one is a main NAS and the other is a backup.</li>
<li>External storage backups</li>
<li>Btrfs snapshots</li>
</ul>
 Learn More: <a target="_blank" href="https://www.asustor.com/online/College_topic?topic=152" rel="noopener">College 152 - Introducing 3-2-1-Compliant Backups</a>
<img title="" src="https://www.asustor.com/images/kindeditor/image/20201116/20201116165205_28685.png" alt="" width="900" height="455" align="" />
 
ASUSTOR’s MyArchive cold storage technology makes backing up easy. Manually copy and back up information to a hot swappable MyArchive drive and place it in a location away from the NAS. MyArchive drives can also be encrypted to prevent data theft in the event a drive is stolen.
 Learn More: <a target="_blank" href="https://www.asustor.com/online/College_topic?topic=255" rel="noopener">College 255 - Using MyArchive</a>
<img title="" src="https://www.asustor.com/images/kindeditor/image/20170926/20170926155131_14832.png" alt="" align="" width="800" height="520" />
 
Snapshot Center lets you create snapshots automatically or manually. If data is corrupt, or infected by ransomware, Snapshot Center is able to quickly restore data to a previous uninfected version as it keeps tabs on file modifications.
 Learn More: <a target="_blank" href="https://www.asustor.com/online/College_topic?topic=252" rel="noopener">College 252 - Introducing ASUSTOR Snapshot Center</a>
<img src="https://www.asustor.com/images/tinymce/upload_img_20221228162159_snapshot_volume.png" alt="" width="800" height="478" />
 
<h4><a name="rw3"></a>3. Reacting to a Ransomware Attack</h4>
If you find yourself experiencing a ransomware infection, please disable Wi-Fi or disconnect your WAN cable ensuring that you are disconnected from the Internet. On an uninfected PC, check to see if NAS files are infected, if not, then attempt to roll back data on Snapshot Center to a previous version.
<ol>
<li>Disable Wi-Fi or pull of the Ethernet cable.</li>
<li>Delete suspected infected files. Take care to avoid deleting backups.</li>
<li>Attempt restoration of files by rolling back modifications in Snapshot Center.</li>
</ol>
 If you've been affected by ransomware, please click <a target="_blank" href="https://www.asustor.com/knowledge/detail/?group_id=630" rel="noopener">here</a> to read more about how to update ADM.
 <hr />
<h3>Learn More</h3>
<iframe width="560" height="315" src="https://www.youtube.com/embed/Da9vA-reHn0?si=eP11g6YD96mZ0MDx" title="YouTube video player" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share" referrerpolicy="strict-origin-when-cross-origin" allowfullscreen="allowfullscreen"></iframe>
<iframe width="560" height="315" src="https://www.youtube.com/embed/0Qt1UVz7_TU?si=0KPMfegzGCd0Y9iq" title="YouTube video player" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share" referrerpolicy="strict-origin-when-cross-origin" allowfullscreen="allowfullscreen"></iframe>
<iframe width="560" height="315" src="https://www.youtube.com/embed/aVbpGwXuCrI?si=Ui0zR3-3vWaILXhO" title="YouTube video player" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share" referrerpolicy="strict-origin-when-cross-origin" allowfullscreen="allowfullscreen"></iframe>

Publish: