Currently your Node RED editor can be accessed by anyone on the internet
To me it sounds as if you have 2 ports open.
443 - fine , that is quite normal for HTTPS
1880 - A fully open Node RED instance (with no password)
Stop looking at this post - and block access now at the router (block access to port 1880)
And read this over : Safely accessing Node-RED over the Internet
And whatever you do - DO NOT POST your website address here
Copyright OpenJS Foundation and Node-RED contributors. All rights reserved. The OpenJS Foundation has registered trademarks and uses trademarks. For a list of trademarks of the OpenJS Foundation, please see our Trademark Policy and Trademark List. Trademarks and logos not indicated on the list of OpenJS Foundation trademarks are trademarks™ or registered® trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.
The OpenJS Foundation | Terms of Use | Privacy Policy | OpenJS Foundation Bylaws | Trademark Policy | Trademark List | Cookie Policy