1. Things you need to know about the new ‘Conversations’ PM system:

    a) DO NOT REPLY TO THE NOTIFICATION EMAIL! I get them, not the intended recipient. I get a lot of them and I do not want them! It is just a notification, log into the site and reply from there.

    b) To delete old conversations use the ‘Leave conversation’ option. This is just delete by another name.
    Dismiss Notice

QNAP NAS’s - malware attack.

Discussion in 'audio' started by AndyU, Nov 1, 2019.

  1. AndyU

    AndyU pfm Member

    Sibbers likes this.
  2. adamdea

    adamdea You are not a sound quality evaluation device

    Thanks for the heads up. I'm wondering how to disconnect my nas from the internet without disconnecting it from my network. At the moment it backs up to cloud. But I think it should only connect to QNAP.
  3. steveinspain

    steveinspain pfm Member

    That's not good news - I'm away from home for a few days...
    At least I'll have something to worry about while with the in-laws.
    Alex S likes this.
  4. Tw99

    Tw99 source last

    As long as you don't have a firewall rule that makes it reachable for incoming traffic (i.e. all internet traffic is sourced from the NAS), you should be OK... (Unless they've hacked the cloud backup somehow!)
  5. Darth Vader

    Darth Vader From the Dark Side

    Does your router support VLANs? If so you will be able to set up separate subnets and keep them isolated from one another. Also you don't say if you are using WiFi, Ethernet or both. A decent Draytek box can support both.


  6. The Bish

    The Bish pfm Member

  7. The Bish

    The Bish pfm Member

  8. adamdea

    adamdea You are not a sound quality evaluation device

  9. adamdea

    adamdea You are not a sound quality evaluation device

    The qnap is connected wired, the network uses both. Are you suggesting getting a hardware firewall?
  10. Darth Vader

    Darth Vader From the Dark Side

    No. My Draytek 2862 router can create VLANs with separate subnets and can connect both wired and WiFi connected stations together. It can create up to 15 VLANs using the 4 Ethernet ports and up to 8 SSIDs!

    Here is an introduction

    What is your router?


    adamdea likes this.
  11. The Bish

    The Bish pfm Member

    I think if your QNap unit isn't reachable from the internet, i.e. you don't have inbound ports open on your router then I cant see how the malware could reach it unless it is infected through its contact with the cloud backup or from a machine on the LAN side - so I thought the advice in that forum to scan for any open inbound ports and then disable UPnP if it is found seemed pretty sound. It looks like the actual route of infection isn't understood yet so it's either going to come through an open inbound port or by inadvertently downloading something onto the local network which then gets into the NAS, so just the Qnap best practice recommendations on updating and locking down the Qnap are also worth doing as well as ensuring that there are no inbound ports that can get to the Qnap.
  12. adamdea

    adamdea You are not a sound quality evaluation device

    I've got a BT router connected to the outside world although I also have an Asus as a switch (connected to the Qnap) and wifi point
  13. adamdea

    adamdea You are not a sound quality evaluation device

    If I can set my sky box to record from outside the network does that mean the router has inbound ports open?
    Will try out the steps suggested when i get home.
  14. The Bish

    The Bish pfm Member

    Hi, don't think so - I believe that comes through the satellite signal.
  15. Darth Vader

    Darth Vader From the Dark Side

    If you mean a HomeHub then no this is just a very basic cheap router and doesn't support VLAN technology. You'd be better off investing in a 'proper' SOHO router. Depending on the model of ASUS you may be lucky check out the manual. My gut feel though is no.


  16. gavreid

    gavreid pfm Member

    Yes the default settings fail the minimum test!!!!!!
  17. The Bish

    The Bish pfm Member

    But you can do a simple scan for open ports using a tool like this one: - this will show if you have anything open inbound from the internet
    Also if you have a BT home hub, log in as admin and go to advanced settings, then select 'Firewall', and have a look at the settings there - if there are any inbound open ports they will have been configured there.
  18. Lliure

    Lliure Active Member

    You don't need to worry about vlans (there is physical segregation in this case anyway, and vlans are still vulnerable if the firewall isn't configured correctly).

    But I would look into a separate firewall or a router with decent firewall capabilities. Devices like ubiquiti security gateway or a bitdefender box are pretty straightforward to use and give a meaningful boost to security with a low bar for prior knowledge.
  19. Joe

    Joe pfm Member

    None of my vinyl records are infected with malware.

    Nor are any of my CD's.

    I can sleep easy.

    tiggers likes this.
  20. abbydog

    abbydog pfm Member

    Go tell Sony - I think you’ll find it cost them a few quid...

Share This Page


  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice