WORM – Write Once – Read Many – Always Protected

ASUSTOR continues its commitment to protect data security inside an ASUSTOR NAS with the introduction of WORM, a technology that helps prevent modification of data. WORM means Write Once, Read Many. This means that once data has been written, it can be read, but not modified and was introduced in ADM 4.2.6. Apply WORM to a shared folder to provide an additional layer of protection for important data. WORM shared folders can prevent partial or complete modification of important data within a set retention period to comply with various regulatory standards for data retention and ensure that valuable data such as intellectual property rights and business secrets are protected from unauthorized tampering, including, but not limited to attacks from malware.

Once a WORM shared folder is set to the most stringent standard, named Compliance Mode, files within the set retention period cannot be tampered with and deleted, the volume where the shared folder is located cannot be removed, and the NAS cannot be reinitialized. Industries like finance and medical require the use of immutable data storage to enhance security while Governance Mode folders can help enterprises meet relevant security certifications to comply with legal regulations.

* WORM system requirements: AS52, 53, 54, Lockerstor, Lockerstor Gen2, Lockerstor Pro, Flashstor

ADM 4.2.6 also introduces the risk list. The risk list will be able to record suspicious IPs, compare them through the AbuseIPDB* database, and filter suspicious IPs to prevent high-risk IPs from connecting to your NAS. ADM's multiple active protection mechanisms can help reduce the risk of attacks, and prevent data leakage, unauthorized tampering or malicious encryption, thereby protecting the integrity of important data and ensuring corporate information security.

* Use of the risk list requires an API key from AbuseIPDB. 
  More info: https://www.asustor.com/knowledge/detail?group_id=1023

ADM 4.0.x will be the last major version for the AS10, AS50, AS51 and AS70 series of NAS devices and will no longer receive security and feature updates as of 1 August 2024. To receive the latest updates, it is recommended to replace your NAS with a newer one. If you wish to continue using an unsupported NAS, it is no longer recommended to expose it NAS devices to the Internet. If using a NAS that still receives support, it is recommended to update to the latest version of ADM. ASUSTOR always recommends keeping up to date 3-2-1-compliant backups regardless of whether or not an unsupported NAS is used.

OpenSSH versions prior to 9.3p2 are susceptible to a vulnerability which when successfully exploited could lead to disclosure of sensitive information, addition or modification of data.

CVE-2023-38408 affected ASUSTOR products with ADM 4.2 and ADM 4.0. Updates with OpenSSH 9.5p1 will be released soon.