Disabling the deault admin

Q'center app, Helpdesk app
vooveek
First post
Posts: 1
Joined: Wed Apr 14, 2021 4:25 am

Re: Disabling the deault admin

Post by vooveek »

I have one question:
as it is a coordinated action recently why nobody asks what is a cause of this? In particular, how attackers knows IP addresses of devices very often behind firewalls?
And if the answer is not the fact that DDNS of QNAP has been compromised and attackers knows DDNS addresses of al machines?
User avatar
dolbyman
Guru
Posts: 35024
Joined: Sat Feb 12, 2011 2:11 am
Location: Vancouver BC , Canada

Re: Disabling the deault admin

Post by dolbyman »

vooveek wrote: Wed Apr 14, 2021 4:37 am Of course you may also switch off your machine and delete of the files. But sometimes we need the remote access. So the idea of deleting qunapcloud access etc. is not useful.
Sure .. instead of securing your device properly you can smash it with a hammer or drop it from a building .. all up to you
vooveek wrote: Wed Apr 14, 2021 4:37 am I would rather rise a question as it is apparently a coordinated action why nobody asks what is a cause of this? In particular, how attackers knows IP addresses of devices very often behind firewalls?
By forwarding ports to the QNAP, your NAS is NOT behind a firewall/NAT anymore you have EXPOSED it... all IP ranges are scanned up and down almost constantly.. with these many carelessly exposed devices and the easy to extort basically untraceable ransom via Cryptocurrency .. a valuable target
vooveek wrote: Wed Apr 14, 2021 4:37 am And if the answer is not the fact that DDNS of QNAP has been compromised and attackers knows DDNS addresses of al machines?
Unlikely,as said above.. just the regular port scans or even public databases like shodan

https://www.shodan.io/search?query=qnap
Post Reply

Return to “NAS Management”