Using a Synology NAS to protect against Ransomware.

Posted By: dstp | Published: May-15-2020

According to the Cybersecurity and Infrastructure Security Agency (CISA) Ransomware is a type of malicious software, or malware designed to deny access to a computer system or data until a ransom is paid. Ransomware typically spreads through phishing emails or by unknowingly visiting an infected website.

The following are some basic precautions you as a home or business user can take to reduce your risk of being infected. This is true whether you are using Windows or a Mac computer.

  • Update your operating system with the latest security patches.
  • Remove unused software as these often become attack vectors.
  • Avoid clicking on links or open attachments from unsolicited emails.
  • Follow safe practices when browsing the Internet.
  • Use a DNS provider that filters out know malware sites.
  • Use the principle of "least privilege" and use a non administrator account for daily computer usage.
  • Enable spam filters

The truth is even with the best security measures in place, new vulnerabilities are discovered daily. So you need to maintain a current backup that is not accessible by malware. There are a number of ways this can be done. With the relatively inexpensive online backup options there are many options.

However many prefer keeping their important files on-site. The following 2 methods are available to owners of Synology Network Attached Storage Devices.

Two Methods of protecting your important files from Ransomware.

  1. SFTP
  2. Hyper Backup

Option 1: The critical point is to make sure that if or when malware does find a way onto your system you have a backup that it cannot access. Synology Diskstation Manager (DSM) is capable of acting as an FTP/SFTP (Secure FTP) server. You can then use backup software to make a SECURE copy or one that malware cannot reach on the server.

Video : How to configure Synology NAS as an SFTP server

Option 2: Synology DSM (Diskstation Manager) includes a built in backup program called Hyper Backup. If you keep your data on the NAS, Hyper backup can make a second copy which again, is not accessible by ransomware.

The option you choose depends on where your data is stored. If you store it on the NAS then Hyper Backup is an option. If you store it on your computer locally then look at option one above.

Youtube Video Demo of Configuring Synology's Hyper Backup Feature to maintain a copy safe from Ransomware.