There is probably a backdoor in the firmware. An attacker can change the root password or there is a manufacturer password.  Stay behind your firewall and do not open any ports to the outside.

Furthermore, the current firmware file 2024032701_110811(Download at Canaan offical) does not make any visible changes and worse, does not change the firmware version in the API or the web backend.