NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
ReadyNAS Pro Business Hacked/Compromised
I have a real problem. About a month ago, my ISP (Time Warner) quarantined my public IP. When I called them, I was told that there was a complaint from Europe that my public IP was trying to brute for...
It will install checkrootkit and run it. This software looks for common rootkits (hidden exploit tools) on the system.
You can issue them now, may give some clues on how the box is compromised.
The ID they ask for only gets them to the system, they would still need a password to log into if you changed it (EnableRootSSH).
Hopefully your data is okay, but if someone got on the box, its hard to say.
The 'cisco' user account is not something on the system by default. Hopefully there are logs on the system still that may give clues, if they haven't been removed.
Contact Support again, ask for L3, and work with them on it.
You can issue them now, may give some clues on how the box is compromised.
The ID they ask for only gets them to the system, they would still need a password to log into if you changed it (EnableRootSSH).
Hopefully your data is okay, but if someone got on the box, its hard to say.
The 'cisco' user account is not something on the system by default. Hopefully there are logs on the system still that may give clues, if they haven't been removed.
Contact Support again, ask for L3, and work with them on it.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
