QNAP NAS devices are becoming very popular in smaller organisations that want a back-up and/or storage device, mainly we think because of their rich feature set, price and availability through Amazon.
But a vulnerability has been discovered in the firmware and the vendors have a patch for it – so get it done:
QNAP fixes critical bug letting hackers inject malicious code (bleepingcomputer.com)
My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.