Mitigating Attacks Against Uninterruptable Power Supply (UPS) Devices

Currently reading
Mitigating Attacks Against Uninterruptable Power Supply (UPS) Devices

threat actors gaining access to a variety of internet-connected uninterruptable power supply (UPS) devices, often through unchanged default usernames and passwords.
Organizations can mitigate attacks against their UPS devices, which provide emergency power in a variety of applications when normal power sources are lost, by removing management interfaces from the internet.
While you could ask why the UPS management interface needs to be directly accessible from the Internet, there seems to be a simple step that it seems many omit when setting up routers, IoT, NAS, and a host of other devices too ... change the default usernames and passwords.

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Welcome to! is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Trending threads