Asustor Emergency Security Advisory – Protecting Yourself From Deadbolt Ransomware

In response to Deadbolt ransomware attacks affecting Asustor, Inc. NAS’ devices, the myasustor.com DDNS service will be disabled as the issue is investigated.

The company will release more information with new developments as we investigate and review the causes to ensure this does not happen again. The firm remain committed to helping affected customers in every way possible.

For your protection, the company recommend the following measures:

• Change default ports, including the default NAS web access ports of 8000 and 8001 as well as remote web access ports of 80 and 443.

• Disable EZ Connect.

• Make an immediate backup.

• Turn off Terminal/SSH and SFTP services.

For detailed instructions on protecting your security, refer to this link.

If you find that your NAS has been affected by Deadbolt ransomware, follow steps listed below.

1. Unplug the Ethernet network cable

2. Safely shut down your NAS by pressing and holding the power button for three seconds.

3. Do not initialize your NAS as this will erase your data.

4. Click on this link for information and instructions to contact Asustorfor help with recovery.