Red Hot Cyber. The Cybersecurity Blog
Featured Articles
Cloudflare is back in the spotlight after a new wave of outages that, on December 5, 2025, is affecting several components of the platform. In addition to the Dashboard and API issues already reported...
Security researchers have discovered two high-risk vulnerabilities (CVE-2025-20386 and CVE-2025-20387, with CVSS severity 8.0) affecting the Splunk Enterprise platform and Universal Forwarder componen...
The Apache Software Foundation has released a significant update for its popular Apache HTTP Server , addressing a total of five separate security vulnerabilities. Administrators are recommended to ap...
Efforts by legislators and law enforcement to combat money laundering and more complex SIM card verification procedures have not significantly weakened the position of anonymous number dealers. This c...
Developers and administrators around the world are urgently updating their servers following the discovery of a critical vulnerability in React Server, which allows attackers to remotely execute unaut...
GitLab Security Updates Fix High-Severity Vulnerabilities CVE-2024-9183
Apache SkyWalking Vulnerability Exposes Users to XSS Attacks
Bloody Wolf Attacks Central Asia with NetSupport RAT via Java Exploits
WhatsApp Blocked in Russia: Messaging App Faces Crackdown
CEO Scam: How to Protect Your Company from Business Email Compromise
Shai-Hulud Worm Spreads Beyond npm, Attacks Maven
GitLab Security Updates Fix High-Severity Vulnerabilities CVE-2024-9183
Redazione RHC - November 28th, 2025
GitLab has released critical security updates for its Community Edition (CE) and Enterprise Edition (EE) to address several high-severity vulnerabilities . The newly released patches 18.6.1, 18.5.3, and 18.4.5 address...
Apache SkyWalking Vulnerability Exposes Users to XSS Attacks
Redazione RHC - November 28th, 2025
A vulnerability was recently discovered in Apache SkyWalking , a popular application performance monitoring tool, that attackers could exploit to execute malicious scripts and launch cross-site scripting (XSS) attacks ....
Bloody Wolf Attacks Central Asia with NetSupport RAT via Java Exploits
Redazione RHC - November 28th, 2025
Group-IB specialists have recorded new attacks by the Bloody Wolf hacker group, which has been targeting Kyrgyzstan since June 2025 and has expanded its operations to Uzbekistan since October. The...
WhatsApp Blocked in Russia: Messaging App Faces Crackdown
Redazione RHC - November 27th, 2025
The Russian Federation's Roskomnadzor has announced that it continues to impose systematic restrictions on the messaging app WhatsApp due to violations of Russian law. According to the agency, the service...
CEO Scam: How to Protect Your Company from Business Email Compromise
Redazione RHC - November 27th, 2025
This morning, Paragon Sec was contacted by an Italian company that had been the victim of a new fraud attempt known as the CEO Scam . The accounting department received...
Shai-Hulud Worm Spreads Beyond npm, Attacks Maven
Redazione RHC - November 27th, 2025
The Shai-Hulud worm has spread beyond the npm ecosystem and was discovered in Maven . Socket specialists noticed an infected package on Maven Central containing the same malicious components used...
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE