Getting warnings from my various Syno boxes, which are located in different states and connected via different ISPs. Taround 1730 ET, that users (bots) using random IP addresses with each attempt, trying to brute force guess the password to my admin user account. Admin and Guest accounts are disabled, the passwords are redonkulously long and complex, they use 2FA protection, and they have no permissions so… enjoy, bots. I have account login block set for 5 bad attempts within 60 minutes with no auto expiration of the block (once you’re locked out, it’s forever). But because the bots are using different random IP addresses with each login attempt, that account block rule isn’t firing. Kind of amusing, kind of annoying.
If you have an active admin account on your Syno NAS, I strongly suggest you batten the hatches ASAP.