Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
HGST, a Western Digital brand

HGST, a Western Digital brand Vendor Cyber Rating & Cyber Score

hgst.com

HGST has been acquired by Western Digital. Please visit Western Digital's company page for the latest company information. HGST is a global leader in data storage, unlocking potential by helping the world harness the power of data. With a deep understanding of industry needs and a changing technology landscape, HGST is driving data center transformation with innovative, proven, smarter storage solutions that optimize capacity, performance, efficiency and reliability with the lowest TCO. Trusted by the world’s largest organizations, HGST’S storage solutions are everywhere, touching lives and enabling possibilities for the enterprise, cloud computing and sophisticated infrastructures in healthcare, energy, finance and government.


HWDB A.I CyberSecurity Scoring

HWDB
Company Information
Website:https://http://www.hgst.com/
Employees number:3,898
Number of followers:36,202
NAICS:
Industry Type:Computer Hardware
Homepage:hgst.com
HWDB Risk Score (AI oriented)
Between 750 and 799
logo
HWDBComputer Hardware
Updated:
29/03/2026
762/1000
Fair
Baa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
HWDB Global Score (TPRM)
xxxx
logo
HWDBComputer Hardware
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

HWDB
HWDBFair
Current Score
762Baa (FAIR)
01000
1 incidents
-5 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
762Before Incident
JUNE 2026
762Before Incident
MAY 2026
762Before Incident
APRIL 2026
762Before Incident
MARCH 2026
761Before Incident
FEBRUARY 2026
761Before Incident
JANUARY 2026
761Before Incident
DECEMBER 2025
766Before Incident
Vulnerability
19 Dec 2025HWDB
Western Digital: WD Discovery Desktop App Vulnerability Allows Arbitrary Code Execution on Windows

Western Digital Patches Critical DLL Hijacking Flaw in WD Discovery for Windows

761After Incident
CRITICAL-5
HGS1769504226
Western Digital Patches Critical DLL Hijacking Flaw in WD Discovery for Windows Western Digital has resolved a severe security vulnerability in its WD Discovery desktop application for Windows, which could have allowed attackers to execute arbitrary code on affected systems. The flaw, tracked as CVE-2025-30248, impacts all versions of WD Discovery prior to 5.3 and was patched in December 2025. The vulnerability stems from a DLL search order hijacking issue combined with EXE and DLL hijacking in the application’s Tiny Installer component. By exploiting this flaw, attackers could manipulate the DLL loading process, forcing the application to load malicious libraries instead of legitimate system files. The weakness is classified under CWE-427 (Uncontrolled Search Path Element), a common issue in applications that load DLLs without specifying fully qualified paths. Successful exploitation could enable attackers to execute code with the same privileges as the WD Discovery application, leading to unauthorized data access, malware installation, privilege escalation, or full system compromise. The attack requires user interaction, such as tricking victims into running a malicious installer or opening files from compromised directories potentially via phishing or social engineering. Western Digital released WD Discovery version 5.3 on December 19, 2025, addressing both the DLL search order hijacking and Tiny Installer vulnerabilities. The update is available via automatic prompts, manual download from Western Digital’s official site, or the WD Discovery Online User Guide. The company credited security researchers Kazuma Matsumoto (GMO Cybersecurity by IERAE, Inc.) and David Silva for responsibly disclosing the flaws. Users and organizations are advised to upgrade to version 5.3 or later to mitigate risks. Enterprise security teams should also monitor for unusual DLL loading behavior and enforce application whitelisting to prevent unauthorized code execution.
INCIDENT DETAILS -
TYPE
DLL Hijacking
IMPACT
Data Compromised: Unauthorized data accessSystems Affected: Windows systems running WD Discovery prior to version 5.3Operational Impact: Potential malware installation, privilege escalation, or full system compromise
NOVEMBER 2025
766Before Incident
OCTOBER 2025
766Before Incident
SEPTEMBER 2025
766Before Incident
AUGUST 2025
766Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for HWDB ?
?
What was HWDB's A.I Rankiteo Cyber Score in June 2026 ?
?
What was HWDB's A.I Rankiteo Cyber Score in May 2026 ?
?
What was HWDB's A.I Rankiteo Cyber Score in April 2026 ?
?
What was HWDB's A.I Rankiteo Cyber Score in March 2026 ?
?
What was HWDB's A.I Rankiteo Cyber Score in February 2026 ?
?
What was HWDB's A.I Rankiteo Cyber Score in January 2026 ?
?
What was HWDB's A.I Rankiteo Cyber Score in December 2025 ?
?
What was HWDB's A.I Rankiteo Cyber Score in November 2025 ?
?
What was HWDB's A.I Rankiteo Cyber Score in October 2025 ?
?
What was HWDB's A.I Rankiteo Cyber Score in September 2025 ?
?
What was HWDB's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on HWDB's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with HWDB ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view HWDB's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?
HGST, a Western Digital brand Cyber Scoring History | Rankiteo