A Virgin media IP address has attempted to log in my NAS

This sort of thing happens all the time. If you were to enable Two-Factor Authentication (2FA) it adds an important level of security. Another thing I'd do is to disable the  default "admin" account and use new administrator account.

 IP address [REMOVED], which is assigned to Virgin Media and located in Liverpool. That strongly suggests a bot or automated scanner probing for vulnerabilities.

Here’s what you can do:

🛡️ Strengthen Your NAS Security
Disable FTP if you’re not actively using it. It's notoriously insecure.

Switch to SFTP or FTPS for encrypted file transfer.

Use strong, unique passwords—especially for admin accounts.

Set up IP access control to restrict remote access to known trusted ranges.

Ensure your NAS firmware is fully up to date to patch known exploits.

📣 Reporting to Virgin Media
To report abuse originating from their IPs, email: 📧 abuse@virginmedia.com Include the IP address, timestamp (18 June 2025 07:36), and the log message you received. Keep it factual and concise.

🔒 Long-term Options
Consider placing your NAS behind a VPN or reverse proxy if you need remote access.

Use port knocking or a dynamic DNS service with 2FA.

Monitor login attempts—Synology, QNAP, etc., often provide alert tools.

Even if it’s just a bot, blocking and reporting it helps build a picture of wider scan activity.