I received the Malwarebytes notification (below) with RoonServer running on my Windows 10 computer. The port (redacted) is the Roon ARC port. Also below are results from searching the IP address in question.
Roon Remote was not running on any of my devices and nothing was playing on any endpoint.
I’m not very technical about these things. How worried should I be about security breaches through the Roon ARC port? How can I completely disable Roon ARC from the RoonServer?
The first thing you would do is turn OFF UPNP on your router. After that, you can then go into the Roon, settings ARc Setup and enter 0 as a port number in the box.
This is precisely why we need a better means of connection. One that doesn’t involve opening up a port onto the internet. Hackers and bots are constantly scanning for open ports. Lets hope a future version of ARC will alleviate the need for port forwarding.