...and then I logged into his. Here's the story:
Today when I started work I checked the System Connection Logs, as I always do. Sometimes I find somebody trying to login to our QNAP. Today was no different, however, I made a mistake, sort of.
While looking up the IP address, I accidentally pasted it into my browser address bar. So out of curiosity I hit Return. It worked, I found...a QNAP web interface? Still curious (and apparently feeling mischievous) I tried to login, with admin/admin as the credentials. It worked. O_O
It authenticated and then began rendering the appropriate pages and at that point I stopped. I closed the browser window. I know "admin" is the master administration account because QNAP has that by default and its permissions can not be changed.
What should I do? I already perma-blocked the offending IP address. Should I login and try to help this lousy "hacker"? I am seriously worried for the security of his 'NAP. I mean, people hit us with a login attempt about once a month now, so it is only a matter of time until he is attacked too.