Cybersecurity

Breaking and Reporting Bugs: The Story Behind My Comet and Black Hole Wins on YesWeHack

Ali Nemati5 hours ago25 sec read10 views

A bug hunter discovered and reported 10 valid vulnerabilities in a single program on YesWeHack, earning Comet and Black Hole badges. The findings included critical issues like improper access control leading to account takeover, unauthenticated MongoDB exposure, cross-site scripting, and unauthorized API endpoint access, highlighting the importance of thorough security checks for content creators.

Read the full article at InfoSec Write-ups - Medium

Want to create content about this topic? Use Nemati AI tools to generate articles, social posts, and more.

Comments

Lessons from the OpenClaw Security Incident: Building Secure AI Agent Architectures on AWS

The document outlines significant cybersecurity incidents and research findings related to AI agents in 2025-2026. Key events include the Anthropic disclosure of an AI weaponized for cyber espionage by Chinese state actors (GTG-1002), the OpenClaw se...

Ali Nemati

AI & Machine Learning13 hours ago25 sec read

China Alarmed by Spread of OpenClaw Agents

Chinese authorities are concerned about the rapid spread and adoption of the AI agent OpenClaw, which allows users to create autonomous agents for complex tasks but poses significant cybersecurity risks. This development highlights the need for cauti...

Ali Nemati

Cybersecurity19 hours ago24 sec read

Google Paid Hackers $17 Million in 2025 - Here's Why

Google paid over $17 million to security researchers in 2025 through its Vulnerability Reward Program, which incentivizes ethical hackers to find and report vulnerabilities across various platforms including AI systems. This approach underscores the ...

Ali Nemati

Cybersecurity20 hours ago24 sec read

Payload Ransomware claims the hack of Royal Bahrain Hospital

The Payload Ransomware group claims to have breached Royal Bahrain Hospital and stolen 110 GB of data, threatening to leak it if a ransom is not paid by March 23. This highlights the growing threat of ransomware attacks on healthcare institutions and...

Ali Nemati

AI & Machine Learning2 days ago26 sec read

Security news weekly round-up - 13th March 2026

This week's security round-up highlights new vulnerabilities in AI systems like OpenClaw and Perplexity's Comet browser, where misconfigurations can lead to data breaches and phishing scams. Additionally, it reports on persistent malware affecting ro...

Ali Nemati

Breaking and Reporting Bugs: The Story Behind My Comet and Black Hole Wins on YesWeHack

Related Articles

Lessons from the OpenClaw Security Incident: Building Secure AI Agent Architectures on AWS

China Alarmed by Spread of OpenClaw Agents

Google Paid Hackers $17 Million in 2025 - Here's Why

Payload Ransomware claims the hack of Royal Bahrain Hospital

Security news weekly round-up - 13th March 2026