Security News > 2020 > October > QNAP fixes critical flaws that could lead to device takeover
QNAP has addressed two critical security vulnerabilities in the Helpdesk app that could enable potential attackers to take over unpatched QNAP network-attached storage devices.
Helpdesk is the built-in app that comes with QNAP's NAS devices and allows admins to submit help requests to the QNAP support team over the Internet.
QNAP recently issued another security advisory warning of a recent surge in ransomware attacks encrypting files on publicly exposed NAS storage devices.
QNAP previously warned of eCh0raix ransomware attacks that targeted flaws in the Photo Station app starting with June 2020.
To avoid having your NAS device compromised, QNAP advises updating all apps on your QNAP devices and installing the latest QTS update, as well as not exposing the QTS Administration page or the QTS apps to the Internet.