It has come to our attention that some of BlueSpray controllers out there have been accessed by unauthorized personnel. After a thorough investigation, we've concluded that those systems were accessed via port forwarding at the router which expose the controller to the public.
If you have set up port forwarding to your controller, please turn off the port forwarding service at your router.
As of version 2.x, you no longer need port forwarding in order to access your BlueSpray controller. You can access it from any where via the cloud now, which is more secure and convenient. Just log onto your account on our web site.
If for any reason, you still insist on having port forwarding, please at least set up login password for your controller. Just go to Settings->System and Select Login to "Yes"