It gives them full access to everything remotely
Well one of us needs to read:
"That suggests the devices include an HP-accessible support account has been incorporated into the LeftHand 9.0 and higher code"
So they have an account on the system. The account can be used to set passwords for other accounts, so it has access to those accounts too. (at minimum)
“Call support. They can reset the password remotely.”
So it's a *remote* backdoor too. NSA can even listen in on the calls.
So the article says the exact opposite. HP is in NSA land, which mean if you're running HP kit and its connected to the net, you need to as a matter of urgency take it offline and replace it with more trusted kit. Personally I switched to Thomson (a router) kit, but I'd also have accepted Korea and German kit.
I'm betting it also lets them remote upgrade the firmware, which likely makes it a total root remote exploit. It's the sort of dumb choice made by people who put in backdoors.
Business 101, you have a legal obligation to protect your business data from foreign snooping, your employees from foreign snooping, the company financial data from foreign snooping, bank transactions the lot. It sucks, but that's the world as it is now.