Red Hot Cyber. The Cybersecurity Blog
Featured Articles
Shannon acts as a penetration tester who doesn’t just report vulnerabilities, but launches actual exploits. Shannon’s goal is to breach your web application’s security before anyone with malicio...
The scene is always the same: monitors lit, dashboards full of alerts, logs scrolling too quickly, an anxious customer on the other end of the call. You sit down, look around, and realize that, once a...
A well-known initial access broker (IAB) called ” Storm-0249 ” has changed its operational strategies, using phishing campaigns as well as highly targeted attacks, which exploit the very security ...
A tool has been released that allows for the discreet monitoring of WhatsApp and Signal user activity using just a phone number. The tracking mechanism covers over three billion accounts and allows fo...
MITRE has released its ranking of the 25 most dangerous software vulnerabilities predicted for 2025, based on data collected through the National Vulnerability Database. These vulnerabilities were ide...
Cloudflare Blocks AI Bots: The Future of Internet Economy at Stake
React2Shell Vulnerability: 8.7M Servers at Risk – CVE-2025-55182
Cloudflare Just Broke the Internet… Again. Centralization Risks Exposed
Chinese Cyber Spies Use Brickstorm Malware to Infiltrate Critical Networks
Splunk Enterprise Vulnerability: CVE-2025-20386 and CVE-2025-20387
Apache HTTP Server Update Fixes Critical Security Vulnerabilities
Cloudflare Blocks AI Bots: The Future of Internet Economy at Stake
Redazione RHC - December 4th, 2025
Since July 1st, Cloudflare has blocked 416 billion requests from artificial intelligence bots attempting to extract content from its customers' websites. According to Matthew Prince, co-founder and CEO of Cloudflare,...
React2Shell Vulnerability: 8.7M Servers at Risk – CVE-2025-55182
Redazione RHC - December 4th, 2025
In 2025, the IT and security communities are buzzing with excitement over a single name: " React2Shell ." With the disclosure of a new vulnerability, CVE-2025-55182, classified as CVSS 10.0,...
Cloudflare Just Broke the Internet… Again. Centralization Risks Exposed
Redazione RHC - December 4th, 2025
Cloudflare is back in the spotlight after a new wave of outages that, on December 5, 2025, is affecting several components of the platform. In addition to the Dashboard and...
Chinese Cyber Spies Use Brickstorm Malware to Infiltrate Critical Networks
Redazione RHC - December 4th, 2025
Chinese cyber spies have been lurking in the networks of critical organizations for years, infecting infrastructure with sophisticated malware and stealing data, government agencies and private experts warn. According to...
Splunk Enterprise Vulnerability: CVE-2025-20386 and CVE-2025-20387
Redazione RHC - December 4th, 2025
Security researchers have discovered two high-risk vulnerabilities (CVE-2025-20386 and CVE-2025-20387, with CVSS severity 8.0) affecting the Splunk Enterprise platform and Universal Forwarder components. These vulnerabilities result from incorrect permissions on...
Apache HTTP Server Update Fixes Critical Security Vulnerabilities
Redazione RHC - December 4th, 2025
The Apache Software Foundation has released a significant update for its popular Apache HTTP Server , addressing a total of five separate security vulnerabilities. Administrators are recommended to apply this...
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE