• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

TerraMaster NAS Feature in-built Anti-Ransomware

btarunr

Editor & Senior Moderator
Staff member
Joined
Oct 9, 2007
Messages
47,311 (7.52/day)
Location
Hyderabad, India
System Name RBMK-1000
Processor AMD Ryzen 7 5700G
Motherboard ASUS ROG Strix B450-E Gaming
Cooling DeepCool Gammax L240 V2
Memory 2x 8GB G.Skill Sniper X
Video Card(s) Palit GeForce RTX 2080 SUPER GameRock
Storage Western Digital Black NVMe 512GB
Display(s) BenQ 1440p 60 Hz 27-inch
Case Corsair Carbide 100R
Audio Device(s) ASUS SupremeFX S1220A
Power Supply Cooler Master MWE Gold 650W
Mouse ASUS ROG Strix Impact
Keyboard Gamdias Hermes E2
Software Windows 11 Pro
TerraMaster, a professional brand that specializes in providing innovative storage products for home, businesses and enterprises, presents its comprehensive suite of cybersecurity features to provide excellent protection against all variants of ransomware, viruses, and other forms of cyberattack. There has been an increase in new variants of ransomware that specifically target NAS devices. TerraMaster continuously bolsters the suite of cybersecurity features on its NAS devices to provide effective protection even to the newest ransomware variants. TerraMaster has taken the necessary steps for help users avoid common pitfalls that are targeted by attackers. TerraMaster also provides the necessary security features to protect against cybersecurity attacks.

TerraMaster NAS users can get alert notifications for system events, power failures, and others. This helps managers in real-time monitoring even at home, ensuring that you are always up to date with the status of your TNAS. TerraMaster NAS device has disabled the default administrator account. This ensures users will create a new administrator account and set their own password at first use.



TerraMaster NAS devices come with an Automatic IP Blocking feature wherein it automatically blocks users from a particular IP address with too many login attempts. To learn more about Automatic IP Blocking and how to enable its function, please visit TerraMaster. Users can get access to the Clam AntiVirus via the TOS app. ClamAV is an open-source antivirus engine for detecting trojans, viruses, malware and other malicious threats.

Snapshot
Snapshot can be installed on TerraMaster NAS devices with Btrfs file system support. Snapshot is a common cybersecurity feature that uses a copy function to create image copies of the storage server. Users can enable Snapshot to take an image snapshot as frequently as every 5 minutes. Nevertheless, users can tweak how Snapshot work depending on available storage space.

Backup
Backup works differently compared to Snapshot. Backup is a more comprehensive protective feature wherein a complete copy of your data is safely stored elsewhere. TerraMaster NAS devices feature the DupleBackup which provides data backup options to several supported storage options including another TNAS, Rsync server, Webdav server, various mainstream cloud drivers, and NAS local folders.

TerraMaster NAS devices also support AOMEI Backup. The AOMEI Backup in the TerraMaster NAS application center allows you to easily back up the entire machine, backing up systems, files, folders, to the TerraMaster NAS. In cases of abnormality or cyberattack, users can easily restore the system and data to a normal state and retrieve valuable information.

TerraMaster NAS devices come with a full suite of protection to help users fight against malware, viruses, ransomware, and other forms of cybersecurity attacks. Users can activate all these features simultaneously for the best protection.

View at TechPowerUp Main Site
 

TheLostSwede

News Editor
Joined
Nov 11, 2004
Messages
17,798 (2.42/day)
Location
Sweden
System Name Overlord Mk MLI
Processor AMD Ryzen 7 7800X3D
Motherboard Gigabyte X670E Aorus Master
Cooling Noctua NH-D15 SE with offsets
Memory 32GB Team T-Create Expert DDR5 6000 MHz @ CL30-34-34-68
Video Card(s) Gainward GeForce RTX 4080 Phantom GS
Storage 1TB Solidigm P44 Pro, 2 TB Corsair MP600 Pro, 2TB Kingston KC3000
Display(s) Acer XV272K LVbmiipruzx 4K@160Hz
Case Fractal Design Torrent Compact
Audio Device(s) Corsair Virtuoso SE
Power Supply be quiet! Pure Power 12 M 850 W
Mouse Logitech G502 Lightspeed
Keyboard Corsair K70 Max
Software Windows 10 Pro
Benchmark Scores https://valid.x86.fr/yfsd9w
Oh man, this is just going to make them a target.
 
Joined
Jan 3, 2021
Messages
3,637 (2.50/day)
Location
Slovenia
Processor i5-6600K
Motherboard Asus Z170A
Cooling some cheap Cooler Master Hyper 103 or similar
Memory 16GB DDR4-2400
Video Card(s) IGP
Storage Samsung 850 EVO 250GB
Display(s) 2x Oldell 24" 1920x1200
Case Bitfenix Nova white windowless non-mesh
Audio Device(s) E-mu 1212m PCI
Power Supply Seasonic G-360
Mouse Logitech Marble trackball, never had a mouse
Keyboard Key Tronic KT2000, no Win key because 1994
Software Oldwin
I guess it works purrfectly and protects your data flawlessly, until it's hacked.
 
Joined
Oct 16, 2014
Messages
671 (0.18/day)
System Name Work in progress
Processor AMD Ryzen 5 3600
Motherboard Asus PRIME B350M-A
Cooling Wraith Stealth Cooler, 4x140mm Noctua NF-A14 FLX 1200RPM Case Fans
Memory Corsair 16GB (2x8GB) CMK16GX4M2A2400C14R DDR4 2400MHz Vengeance LPX DIMM
Video Card(s) GTX 1050 2GB (for now) 3060 12GB on order
Storage Samsung 860 EVO 500GB, Lots of HDD storage
Display(s) 32 inch 4K LG, 55 & 48 inch LG OLED, 40 inch Panasonic LED LCD
Case Cooler Master Silencio S400
Audio Device(s) Sound: LG Monitor Built-in speakers (currently), Mike: Marantz MaZ
Power Supply Corsair CS550M 550W ATX Power Supply, 80+ Gold Certified, Semi-Modular Design
Mouse Logitech M280
Keyboard Logitech Wireless Solar Keyboard K750R (works best in summer)
VR HMD none
Software Microsoft Windows 10 Home 64bit OEM, Captur 1 21
Benchmark Scores Cinebench R20: 3508 (WIP)
I guess it works purrfectly and protects your data flawlessly, until it's hacked.
Yes, perfectly was spelt correctly in the first version. :cool:
 
Joined
Oct 7, 2018
Messages
118 (0.05/day)
Location
Pennsylvania, USA
Processor AMD Ryzen 5900X
Motherboard MSI MAG B550 Mortar
Cooling ARCTIC COOLING Liquid Freezer II 240
Memory G.SKILL Flare X Series 32GB (4 x 8GB) 288-Pin DDR4 SDRAM DDR4 3200
Video Card(s) EVGA GeForce GTX 2080 FTW3 Ultra, 08G-P4-2287-KR, 8GB GDDR6
Storage 1 x Samsung 980 PRO 500G | 1 x Mushkin Enhanced Pilot-E M.2 2280 2TB | 2 x 1TB WD10EADS
Display(s) 1 x ASUS ROG PG259QNR, 1 x Dell ST2421L
Case Lian Li O11D MINI-X
Audio Device(s) SteelSeries Arctis 5
Power Supply Seasonic FOCUS SGX-650, 650W
Mouse Mionix NAOS QG
Keyboard SteelSeries Apex Pro
Software Windows 10 Pro 21H1
Oh man, this is just going to make them a target.
I still do not understand what is so special that is being declared in this press release about anti-ransomware.
Snapshots are not immune since they reside locally on the machine.
ClamAV, though it works, there is nothing super special about it. My company has it deployed on their BSD/Linux systems, and acts like any other antivirus.
Backups residing externally from the NAS is the only point here that would help against ransonware, but as long as your backups are up-to-date to avoid data loss.
I must be missing something here.
 

W1zzard

Administrator
Staff member
Joined
May 14, 2004
Messages
27,974 (3.71/day)
Processor Ryzen 7 5700X
Memory 48 GB
Video Card(s) RTX 4080
Storage 2x HDD RAID 1, 3x M.2 NVMe
Display(s) 30" 2560x1600 + 19" 1280x1024
Software Windows 10 64-bit
I see nothing there that's specifically against ransomware? Rather these are the most basic security best practices?
 
Joined
Oct 7, 2018
Messages
118 (0.05/day)
Location
Pennsylvania, USA
Processor AMD Ryzen 5900X
Motherboard MSI MAG B550 Mortar
Cooling ARCTIC COOLING Liquid Freezer II 240
Memory G.SKILL Flare X Series 32GB (4 x 8GB) 288-Pin DDR4 SDRAM DDR4 3200
Video Card(s) EVGA GeForce GTX 2080 FTW3 Ultra, 08G-P4-2287-KR, 8GB GDDR6
Storage 1 x Samsung 980 PRO 500G | 1 x Mushkin Enhanced Pilot-E M.2 2280 2TB | 2 x 1TB WD10EADS
Display(s) 1 x ASUS ROG PG259QNR, 1 x Dell ST2421L
Case Lian Li O11D MINI-X
Audio Device(s) SteelSeries Arctis 5
Power Supply Seasonic FOCUS SGX-650, 650W
Mouse Mionix NAOS QG
Keyboard SteelSeries Apex Pro
Software Windows 10 Pro 21H1
I see nothing there that's specifically against ransomware? Rather these are the most basic security best practices?
If the question was directed to my post, I should have elaborated that these are good security and preventative maintenance practices. It is always good to keep updated backups.
Since I am not well versed in ransomware, was wondering if there was anything else that could help mitigate it other than keeping your apps/OS updated, backups and antivirus? Maybe just keep the NAS local access only, but for some users, remote access is essential.
 

TheLostSwede

News Editor
Joined
Nov 11, 2004
Messages
17,798 (2.42/day)
Location
Sweden
System Name Overlord Mk MLI
Processor AMD Ryzen 7 7800X3D
Motherboard Gigabyte X670E Aorus Master
Cooling Noctua NH-D15 SE with offsets
Memory 32GB Team T-Create Expert DDR5 6000 MHz @ CL30-34-34-68
Video Card(s) Gainward GeForce RTX 4080 Phantom GS
Storage 1TB Solidigm P44 Pro, 2 TB Corsair MP600 Pro, 2TB Kingston KC3000
Display(s) Acer XV272K LVbmiipruzx 4K@160Hz
Case Fractal Design Torrent Compact
Audio Device(s) Corsair Virtuoso SE
Power Supply be quiet! Pure Power 12 M 850 W
Mouse Logitech G502 Lightspeed
Keyboard Corsair K70 Max
Software Windows 10 Pro
Benchmark Scores https://valid.x86.fr/yfsd9w
I still do not understand what is so special that is being declared in this press release about anti-ransomware.
Snapshots are not immune since they reside locally on the machine.
ClamAV, though it works, there is nothing super special about it. My company has it deployed on their BSD/Linux systems, and acts like any other antivirus.
Backups residing externally from the NAS is the only point here that would help against ransonware, but as long as your backups are up-to-date to avoid data loss.
I must be missing something here.
I doubt it, it's a Taiwanese company after all and this is just them trying to win over customers from the competition.
As I said, this is just going to make them a target, since I'm pretty sure, just as you're saying, that there's nothing in this press release about what exactly would stop a ransomware from encrypting the data. Maybe their CPU is so slow and lacks AES encryption, so it would take too long? :roll:
 

W1zzard

Administrator
Staff member
Joined
May 14, 2004
Messages
27,974 (3.71/day)
Processor Ryzen 7 5700X
Memory 48 GB
Video Card(s) RTX 4080
Storage 2x HDD RAID 1, 3x M.2 NVMe
Display(s) 30" 2560x1600 + 19" 1280x1024
Software Windows 10 64-bit

TheLostSwede

News Editor
Joined
Nov 11, 2004
Messages
17,798 (2.42/day)
Location
Sweden
System Name Overlord Mk MLI
Processor AMD Ryzen 7 7800X3D
Motherboard Gigabyte X670E Aorus Master
Cooling Noctua NH-D15 SE with offsets
Memory 32GB Team T-Create Expert DDR5 6000 MHz @ CL30-34-34-68
Video Card(s) Gainward GeForce RTX 4080 Phantom GS
Storage 1TB Solidigm P44 Pro, 2 TB Corsair MP600 Pro, 2TB Kingston KC3000
Display(s) Acer XV272K LVbmiipruzx 4K@160Hz
Case Fractal Design Torrent Compact
Audio Device(s) Corsair Virtuoso SE
Power Supply be quiet! Pure Power 12 M 850 W
Mouse Logitech G502 Lightspeed
Keyboard Corsair K70 Max
Software Windows 10 Pro
Benchmark Scores https://valid.x86.fr/yfsd9w
If the question was directed to my post, I should have elaborated that these are good security and preventative maintenance practices. It is always good to keep updated backups.
Since I am not well versed in ransomware, was wondering if there was anything else that could help mitigate it other than keeping your apps/OS updated, backups and antivirus? Maybe just keep the NAS local access only, but for some users, remote access is essential.
I keep my NAS local only, but I can VPN in to my network if I need to access it remotely, but that goes through my router, which I hope makes it a tad safer.
I can't think of much that would prevent a ransomware attack, except keeping everything up to date and don't click on dodgy links...
 
Joined
Oct 7, 2018
Messages
118 (0.05/day)
Location
Pennsylvania, USA
Processor AMD Ryzen 5900X
Motherboard MSI MAG B550 Mortar
Cooling ARCTIC COOLING Liquid Freezer II 240
Memory G.SKILL Flare X Series 32GB (4 x 8GB) 288-Pin DDR4 SDRAM DDR4 3200
Video Card(s) EVGA GeForce GTX 2080 FTW3 Ultra, 08G-P4-2287-KR, 8GB GDDR6
Storage 1 x Samsung 980 PRO 500G | 1 x Mushkin Enhanced Pilot-E M.2 2280 2TB | 2 x 1TB WD10EADS
Display(s) 1 x ASUS ROG PG259QNR, 1 x Dell ST2421L
Case Lian Li O11D MINI-X
Audio Device(s) SteelSeries Arctis 5
Power Supply Seasonic FOCUS SGX-650, 650W
Mouse Mionix NAOS QG
Keyboard SteelSeries Apex Pro
Software Windows 10 Pro 21H1
It was not, sorry if it came across like that


lol you should patent this idea and sell it to the NAS makers
Not your fault. I just realized if it was, my post would have been quoted. Apologies for the confusion. Happy Friday!

I keep my NAS local only, but I can VPN in to my network if I need to access it remotely, but that goes through my router, which I hope makes it a tad safer.
I can't think of much that would prevent a ransomware attack, except keeping everything up to date and don't click on dodgy links...
Interesting. If I ever buy or build my own, that sounds like the way to go if you need remote access. Thanks for the tip.
One more question, does all ransomware require user interaction in order for it to deploy (e.g. links, executing exploited scripts, etc.)?
 

TheLostSwede

News Editor
Joined
Nov 11, 2004
Messages
17,798 (2.42/day)
Location
Sweden
System Name Overlord Mk MLI
Processor AMD Ryzen 7 7800X3D
Motherboard Gigabyte X670E Aorus Master
Cooling Noctua NH-D15 SE with offsets
Memory 32GB Team T-Create Expert DDR5 6000 MHz @ CL30-34-34-68
Video Card(s) Gainward GeForce RTX 4080 Phantom GS
Storage 1TB Solidigm P44 Pro, 2 TB Corsair MP600 Pro, 2TB Kingston KC3000
Display(s) Acer XV272K LVbmiipruzx 4K@160Hz
Case Fractal Design Torrent Compact
Audio Device(s) Corsair Virtuoso SE
Power Supply be quiet! Pure Power 12 M 850 W
Mouse Logitech G502 Lightspeed
Keyboard Corsair K70 Max
Software Windows 10 Pro
Benchmark Scores https://valid.x86.fr/yfsd9w
Interesting. If I ever buy or build my own, that sounds like the way to go if you need remote access. Thanks for the tip.
One more question, does all ransomware require user interaction in order for it to deploy (e.g. links, executing exploited scripts, etc.)?
Most likely not, as a lot of seems to come via botnets exploiting weaknesses in the software on the device.
I run Open Media Vault on mine, which is built on top of Debian.
Maybe not the most popular NAS OS, but it's been rock solid and the next version should improve the user experience quite a bit with an improved UI.
 
Joined
Jul 10, 2017
Messages
2,671 (0.98/day)
I keep my NAS local only, but I can VPN in to my network if I need to access it remotely, but that goes through my router, which I hope makes it a tad safer.
I can't think of much that would prevent a ransomware attack, except keeping everything up to date and don't click on dodgy links...
0-click and 0-day ring any bell?
 

TheLostSwede

News Editor
Joined
Nov 11, 2004
Messages
17,798 (2.42/day)
Location
Sweden
System Name Overlord Mk MLI
Processor AMD Ryzen 7 7800X3D
Motherboard Gigabyte X670E Aorus Master
Cooling Noctua NH-D15 SE with offsets
Memory 32GB Team T-Create Expert DDR5 6000 MHz @ CL30-34-34-68
Video Card(s) Gainward GeForce RTX 4080 Phantom GS
Storage 1TB Solidigm P44 Pro, 2 TB Corsair MP600 Pro, 2TB Kingston KC3000
Display(s) Acer XV272K LVbmiipruzx 4K@160Hz
Case Fractal Design Torrent Compact
Audio Device(s) Corsair Virtuoso SE
Power Supply be quiet! Pure Power 12 M 850 W
Mouse Logitech G502 Lightspeed
Keyboard Corsair K70 Max
Software Windows 10 Pro
Benchmark Scores https://valid.x86.fr/yfsd9w
0-click and 0-day ring any bell?
That's the thing, there's no such thing as a bug free/safe device that's connected to the internet. There's always someone that figures out an attack vector.
All you can to, is to keep your software up to date.
I'm just grateful I have a router that's supported by Voxel, which seems to push out security patches nearly every month. I did in fact just update to the latest one.
 
Joined
Jul 10, 2017
Messages
2,671 (0.98/day)
That's the thing, there's no such thing as a bug free/safe device that's connected to the internet. There's always someone that figures out an attack vector.
All you can to, is to keep your software up to date.
I'm just grateful I have a router that's supported by Voxel, which seems to push out security patches nearly every month. I did in fact just update to the latest one.
Oh, many other things could be done, but one can never achieve perfect security.

Best you can do is add multiple layers of security and opt for dynamic root of trust. This way if someone breaks into your router for example, they would still need to work separately on the NAS.

Strong crypto, good digital habits, redundancy, constant hardening, pentesting and auditing. Then, maybe you have a chance. :)
 

W1zzard

Administrator
Staff member
Joined
May 14, 2004
Messages
27,974 (3.71/day)
Processor Ryzen 7 5700X
Memory 48 GB
Video Card(s) RTX 4080
Storage 2x HDD RAID 1, 3x M.2 NVMe
Display(s) 30" 2560x1600 + 19" 1280x1024
Software Windows 10 64-bit
This way if someone breaks into your router for example
once they hack your router it's game over, moving laterally is trivial in nearly all home networks, especially when you're able to view/modify packets going in and out
 
Joined
Jul 10, 2017
Messages
2,671 (0.98/day)
once they hack your router it's game over, moving laterally is trivial in nearly all home networks, especially when you're able to view/modify packets going in and out
Don't let your home network be like nearly all home networks. ;)

All hosts in my LANs are firewalled and distrusted by default, for example. Not unbreakable but it will buy me some time for some of the whistleblowers to trigger an alarm that something fishy is going on.

There are many rules, best practices and procedures to follow for some peace of mind. Granted not many people bother at all.
 
Joined
Oct 16, 2014
Messages
671 (0.18/day)
System Name Work in progress
Processor AMD Ryzen 5 3600
Motherboard Asus PRIME B350M-A
Cooling Wraith Stealth Cooler, 4x140mm Noctua NF-A14 FLX 1200RPM Case Fans
Memory Corsair 16GB (2x8GB) CMK16GX4M2A2400C14R DDR4 2400MHz Vengeance LPX DIMM
Video Card(s) GTX 1050 2GB (for now) 3060 12GB on order
Storage Samsung 860 EVO 500GB, Lots of HDD storage
Display(s) 32 inch 4K LG, 55 & 48 inch LG OLED, 40 inch Panasonic LED LCD
Case Cooler Master Silencio S400
Audio Device(s) Sound: LG Monitor Built-in speakers (currently), Mike: Marantz MaZ
Power Supply Corsair CS550M 550W ATX Power Supply, 80+ Gold Certified, Semi-Modular Design
Mouse Logitech M280
Keyboard Logitech Wireless Solar Keyboard K750R (works best in summer)
VR HMD none
Software Microsoft Windows 10 Home 64bit OEM, Captur 1 21
Benchmark Scores Cinebench R20: 3508 (WIP)
I keep my NAS local only, but I can VPN in to my network if I need to access it remotely, but that goes through my router, which I hope makes it a tad safer.
I can't think of much that would prevent a ransomware attack, except keeping everything up to date and don't click on dodgy links...
Now I am not an authority on hacking and ransomware, but I have a friend who is, and his advice is:

Short of air-gapped computing and storage, any accessible device, no matter how secure (e.g. NSA, NASA, Pentagon ...) is vulnerable.
AL 2021
 

TheLostSwede

News Editor
Joined
Nov 11, 2004
Messages
17,798 (2.42/day)
Location
Sweden
System Name Overlord Mk MLI
Processor AMD Ryzen 7 7800X3D
Motherboard Gigabyte X670E Aorus Master
Cooling Noctua NH-D15 SE with offsets
Memory 32GB Team T-Create Expert DDR5 6000 MHz @ CL30-34-34-68
Video Card(s) Gainward GeForce RTX 4080 Phantom GS
Storage 1TB Solidigm P44 Pro, 2 TB Corsair MP600 Pro, 2TB Kingston KC3000
Display(s) Acer XV272K LVbmiipruzx 4K@160Hz
Case Fractal Design Torrent Compact
Audio Device(s) Corsair Virtuoso SE
Power Supply be quiet! Pure Power 12 M 850 W
Mouse Logitech G502 Lightspeed
Keyboard Corsair K70 Max
Software Windows 10 Pro
Benchmark Scores https://valid.x86.fr/yfsd9w
Now I am not an authority on hacking and ransomware, but I have a friend who is, and his advice is:
Pretty much, yes. They've even managed to access data on air-gapped computers over the power line, if very slowly.
 
Joined
Oct 16, 2014
Messages
671 (0.18/day)
System Name Work in progress
Processor AMD Ryzen 5 3600
Motherboard Asus PRIME B350M-A
Cooling Wraith Stealth Cooler, 4x140mm Noctua NF-A14 FLX 1200RPM Case Fans
Memory Corsair 16GB (2x8GB) CMK16GX4M2A2400C14R DDR4 2400MHz Vengeance LPX DIMM
Video Card(s) GTX 1050 2GB (for now) 3060 12GB on order
Storage Samsung 860 EVO 500GB, Lots of HDD storage
Display(s) 32 inch 4K LG, 55 & 48 inch LG OLED, 40 inch Panasonic LED LCD
Case Cooler Master Silencio S400
Audio Device(s) Sound: LG Monitor Built-in speakers (currently), Mike: Marantz MaZ
Power Supply Corsair CS550M 550W ATX Power Supply, 80+ Gold Certified, Semi-Modular Design
Mouse Logitech M280
Keyboard Logitech Wireless Solar Keyboard K750R (works best in summer)
VR HMD none
Software Microsoft Windows 10 Home 64bit OEM, Captur 1 21
Benchmark Scores Cinebench R20: 3508 (WIP)
Pretty much, yes. They've even managed to access data on air-gapped computers over the power line, if very slowly.
Not so much if you are not connected to the grid, and the house is a Faraday Cage.
 
Top