As do I which is why I too have automatic firmware updates disabled in the Dashboard.
However, WD is telling people (see here, and here for example) to have automatic firmware updates enabled. As such if the average Joe uses filtering to block access to the My Cloud to try and protect themselves from some of these security vulnerabilities they’ll loose the auto firmware update to the firmware and have to do it manually which means they’d have to know the firmware has been updated in order to manually update. Unless they are aware of these issues and of a firmware update they won’t know to update their firmware if (ever) a fix is provided by WD.
