Follow us on Twitter
Follow us on Twitter
Follow us on Twitter
Follow us on Twitter
Follow us on Twitter

Products' We Represent


Subscribe

captcha 

Cover-161124-Sitex-2016

Mitigate the threat of ransomware with QNAP NAS
Friday, 22 July 2016 00:00

Protecting Your Data from Ransomware

Make a recovery plan against encryption-based locker viruses

Ransomware is a rising threat against both business and home users that targets computers and network-based devices. A simple yet effective method of mitigating the threat of ransomware is to ensure that you always have up-to-date, remotely-stored backups. QNAP NAS is an ideal backup center that includes comprehensive backup features and supports point-in-time snapshots to help individuals and organizations protect important data, restore files, and avoid downtime.

QNAP-FB

"It's incredibly fast and by the time the warning message had appeared on the screen it had already encrypted everything of value on the hard drive - it happens in seconds."

BBC News, April 2016


What is locker ransomware?

Locker is a file-encrypting ransomware (Cryptolocker, CTB Locker, TeslaCrypt, and others) that encrypts files found on local drives, removable drives, mapped network drives, and even Dropbox mappings. Victims will be extorted a ransom to decrypt the affected files, or they will be unable to open the affect files ever again.

… And why is locker ransomware so troublesome?
ransomware f03 icon Ransomware is typically spread through phishing emails, and mostly hidden in emails as attachments like .zip, .pdf, .doc, .exe, .js files, and more. It is difficult to identify, and self-spreading.
ransomware f03 icon Traditional antivirus may not detect next-generation ransomware.
ransomware f03 icon Locker ransomware uses asymmetric encryption or more advanced encryption methods which can be difficult (if not impossible) to break locally.
ransomware f03 icon Victims are forced to pay (normally by untraceable means) to restore their files, or they face losing them forever.


Back up with QNAP NAS to save your files

While the first line of defense against being affected by malicious software is being careful and practicing sensible usage habits (regularly updating your software, not opening untrustworthy emails, not visiting unknown websites, etc), you should always remember to back up your data.

QNAP NAS provides a simple solution for backing up/restoring files and data. Its Linux-based QTS operating system makes it more secure than Windows® systems that are more at risk from being attacked. Moreover, the native support for point-in-time snapshots that are operated separately from the file system makes QNAP NAS a reliable backup solution for reacting quickly for backing up and restoring important files and system data.

ransomware f04 img

Snapshots: React quickly for backing up and restoring

Snapshots record the metadata of files outside the file system and allow users to preserve and restore multiple versions of the same file, folder or even the entire volume. If ransomware attacks or an unexpected situation arises on your system, you can quickly and easily revert back to the previous state that the snapshot has recorded.

ransomware f05 icon1 ransomware f05 icon2 ransomware f05 icon3
Block-based snapshots   Restore in a click   Snapshot Replica

QNAP’s block-based snapshot supports incremental backups to save storage space. While copying only the changes made, it also saves time for backing up and restoring.

 

Data recovery through snapshots only takes a few minutes. As they are separated from the file system, snapshots allow users to restore the original, unencrypted files even if the volume is affected by ransomware.
 

After creating snapshots, you can efficiently copy them to another QNAP NAS for double protection.

 

 

 

Note: Snapshots require a QNAP NAS with at least 4GB RAM.
 

Steps to restore your files with snapshots

QNAP Lab simulated a ransomware attack, and confirms that the following steps are suitable for recovering data with QNAP snapshots.

ransomware f06 icon1









1. Use QNAP NetBak Replicator (or another backup tool) to regularly back up files to the NAS with user accounts that only have limited access rights (highly recommended), and then configure the snapshot function with the administrator's account.
 
ransomware f06 icon2 2. If you notice ransomware activity or are presented with a ransom message, immediately disconnect your computer from the Internet, and remove the connection between the infected computer and NAS. If possible, disconnect the network cable from the NAS too to prevent the virus from spreading.
 
ransomware f06 icon3 3. If you have a NAS with HDMI output you can connect a mouse, keyboard and HDMI monitor to the NAS, and access the NAS using HD Station. If your NAS lacks HDMI output, then when connecting to the NAS please ensure that your computer does not mount any infected shared folders until the snapshot is restored.
 
ransomware f06 icon4 4. Click “Storage Manager”, and check the “Snapshot Manager” to see a list of snapshots.
 
ransomware f06 icon5 5. Select a snapshot taken before the ransomware attack, delete all files in the infected folder, then restore those files with the snapshot. Your files should now be recovered and unencrypted.

 

 

 

 

 

ACE Featured Products

WD Red
WD Red
Call for Pricing
MiniMag II MagStripe Readers
MiniMag II MagStripe Readers
$128
QNAP TVS-863
QNAP TVS-863
Call for Pricing
QNAP TS-421U
QNAP TS-421U
Call for Pricing
QNAP TS-212-E
QNAP TS-212-E
Call for Pricing
AS-7009RD / AS-7009RDX
AS-7009RD / AS-7009RDX
Call for Pricing
Rack Station RS10613xs+ (XS Series)
Rack Station RS10613xs+ (XS Series)
Call for Pricing
Disk Station DS716+ (Plus Series)
Disk Station DS716+ (Plus Series)
Call for Pricing

Latest News