Samba Team discovered a 7 years old security hole in Samba version 3.5.0 +. If your SMB port is forwarded , and you use vulnerable SMB version, you are at risk of an attack.
Qnap has released a patch . Go to qnap download center and download Qfix for your model. You can apply Qfix to your Qnap via firmware update dialogue box.