Companies such as synology and Qnap sell consumer network attached storage (NAS) units with proprietary operating systems.
I look at the synology website and I saw that there are dozens of open ports in its DSM OS:
Most ports are handled by applications with dubious security. Even with all ports closed, some applications can UpnP themselves out. There are sometimes hardcoded passwords.
Does anyone have any information about the level of the security of the synology devices?
Will a VPN completely make them secure? Could there be security risks even if they are not accessible over the Internet?