NAS is at risk of being invaded and controlled. ASUSTOR urges users to update repair applications immediately

According to news from this site on February 8, ASUSTOR, a network storage brand owned by ASUS (this site's note: formerly known as "ASUSTOR"), recently issued a security advisory, urging users of its NAS and other devices to immediately use the Surveillance Center The monitoring center application is upgraded to the latest version to prevent attackers from gaining control by exploiting vulnerabilities in older versions of the application.

▲ AiSote AS3304T v2 NAS, picture source AiSote official website

According to the announcement on the AiSote English official website , “The Surveillance Center app is pushing an emergency update to address a critical vulnerability detected in the software that could allow an attacker to escalate privileges and gain control of the device to execute code on the ADM (operating system) to install malware .This update fixes the underlying vulnerability.Asote strongly recommends that all users of the Surveillance Center for ADM application install the latest version as soon as possible to minimize their risk of being infected by malware.Asote also It is recommended to take additional security measures to prevent the potential harm of malware.”

Aisute official also reminds users to take the following measures to improve security:

• Change the password and improve the password strength.

• Change the system HTTP and HTTPS communication ports (do not use the default 8000 and 8001).

• If there is no need to use SSH and SFTP services, please do not enable them. If you need to use it, please close the service immediately after use.

• Please perform data backup and create snapshots regularly.

• Enable risky IP detection function.

The above is the detailed content of NAS is at risk of being invaded and controlled. ASUSTOR urges users to update repair applications immediately. For more information, please follow other related articles on the PHP Chinese website!