Bleeping Computer

Critical WD My Cloud bug allows remote command injection

Western Digital has released firmware updates for multiple My Cloud NAS models to patch a critical-severity vulnerability that could be exploited remotely to execute arbitrary system commands. Tracked ...
Dark Reading

Command-Injection Bug in Cisco Industrial Gear Opens Devices to Complete Takeover

One bug — CSCwc67015 — was spotted in yet-to-be-released code. It could have allowed hackers to remotely execute their own code, and potentially overwrite most of the files on the device. The second, ...
Bleeping Computer

Fortinet warns of critical command injection bug in FortiSIEM

Fortinet is alerting customers of a critical OS command injection vulnerability in FortiSIEM report server that could be exploited by remote, unauthenticated attackers to execute commands through ...
SecurityWeek

Will AI Kill the Bug Bounty Industry?

Will AI kill the bug bounty industry? Anthropic's Mythos is accelerating vulnerability discovery and forcing researchers and ...
Dark Reading

Max-Critical Cisco Bug Enables Command-Injection Attacks

Cisco is warning of a critical security vulnerability found in its Unified industrial Wireless Software for Cisco Ultra-Reliable Wireless Backhaul (URWB) access points that could allow an ...
CSOonline

11 top bug bounty programs launched in 2024

Software providers continue to rely on community support to help them identify code mistakes that can lead to malicious attacks. Bug bounty programs remain a crucial component of cybersecurity ...
CSOonline

9 top bug bounty programs launched in 2025

Bug bounty programs remain a crucial component of cybersecurity strategies in 2025, offering organizations the ability to draw in help from a diverse pool of cybersecurity professionals and ...