OpenAI launches new public bug bounty program covering design or implementation issues leading to abuse and safety risks.

Researchers who identify and report bugs in open-source software will no longer be rewarded by the Internet Bug Bounty team.

OpenAI’s Safety Bug Bounty program seeks to address AI safety vulnerabilities beyond traditional security flaws ...

Google has expanded its vulnerability rewards program (VRP) to include attack scenarios specific to generative AI. In an announcement shared with TechCrunch ahead of publication, Google said: “We ...

Ethical hackers have found nine “high severity” vulnerabilities and one “critical” vulnerability across Department of Defense proxies, virtual private networks, and virtual desktops through the “Hack ...

Fortinet is alerting customers of a critical OS command injection vulnerability in FortiSIEM report server that could be exploited by remote, unauthenticated attackers to execute commands through ...

Western Digital has released firmware updates for multiple My Cloud NAS models to patch a critical-severity vulnerability that could be exploited remotely to execute arbitrary system commands. Tracked ...

Healthcare security teams are under intense pressure to secure their environments from a growing number of threats. Teams are often understaffed, constantly catching up with an onslaught of threats ...

One bug — CSCwc67015 — was spotted in yet-to-be-released code. It could have allowed hackers to remotely execute their own code, and potentially overwrite most of the files on the device. The second, ...

Microsoft has updated its bug bounty terms yet again. It now has a more specific pricing breakdown of what you can expect for high-impact bug finds. Maximum awards now have an (up to) 30% modifier.