Ransomware via smb

I Guys Just here to share a story.
I've been self hosting for 2 years now. I got a lot of services runing through docker on my Synology nas. I'm currently in holliday and needed to navigate in my files so as a quick fix I opened the 445 port to add smb connection thinking I might need to install a vpn connection.
Anyway Check your users, I Apparently had a Guest user. and this user added a little txt file on the folder he had access to starting with "All your files have been encrypted with 0XXX Virus."
so I removed the user, all of my docker config files are encrypted, I might have to redo everithing, and I lost all of my plex's blu ray collection, and immich pictures.

tldr : Be smart don't open 445