Slashdot Mirror

← Back to Stories (view on slashdot.org)

Synolocker 0-Day Ransomware Puts NAS Files At Risk

Posted by Unknown on Monday August 4, 2014 @09:01PM from the you-have-an-offsite-backup-right? dept.

Deathlizard (115856) writes "Have a Synology NAS? Is it accessible to the internet? If it is, You might want to take it offline for a while. Synolocker is a 0-day ransomware that once installed, will encrypt all of the NAS's files and hold them for ransom just like Cryptolocker does for windows PC's. The Virus is currently exploiting an unknown vulnerability to spread. Synology is investigating the issue."

4 of 150 comments (clear)

Min score:

Reason:

Sort:

This is how we learn by Anonymous Coward · 2014-08-04 21:10 · Score: 5, Insightful

not to connect your NAS directly to the internet.
1. Re:This is how we learn by jonwil · 2014-08-04 21:47 · Score: 4, Insightful
  
  It should be attached to a network fire-walled off from the Internet and only accessible if you are on the local LAN.
2. Re:This is how we learn by rikkards · 2014-08-04 22:06 · Score: 4, Insightful
  
  Kind of defeats the cloud feature on Synology NAS doesn't it? Granted you should have it firewalled off except for the specific port it needs.
3. Re:This is how we learn by spacefight · 2014-08-04 22:18 · Score: 4, Insightful
  
  What if the attack surface is the "port it needs"?