NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
security leak
1 Topic
HUGE security leak in ReadyNAS
I've been using a ReadyNAS 6 Pro for years now and I have always been quite happy with it, but today to my horror I discovered a HUGE security leak in this product. My configuration has the FTP server enabled, for one share, called 'public', which contains files I need other people to have access too. Nothing special. The share has write access too, because I also use it for people to drop stuff off for me, nothing special either. My internet connection isn't fast enough for other people to store large amounts of illegal content. Last two weeks I've been making a backup of my server's full content. The quickest way to do this, is to attache a USB drive, so I don't have to pull all data over the network. An now it turns out that this backup drive, including the full content has been exposed to the whole world! Who knows what has been harvested by 'hackers', bots and criminals! I noticed this because when verifying my files, all kinds of spam files were popping up everywhere. Netgear found it somehow a good idea to share attached USB drives per default with the rest of the world! Help me out here, Netgear, because your support team is hiding behind serial number protected web forms and a maze of links redirecting people to FAQs. I need logs from my NAS to estimate the damag.2.9KViews0likes5Comments