Welcome to Red Hot Cyber | Cybersecurity News
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Search
Redhotcyber Banner Sito 320x100px Uscita 101125
Banner Ancharia Desktop 1 1

Red Hot Cyber. The Cybersecurity Blog

Previous Next

Featured Articles

Immagine del sito
Aisuru Botnet Unleashes 29.7 Tbps DDoS Attack, Cloudflare Mitigates
Di Redazione RHC - 03/12/2025

A botnet service called Aisuru offers an army of compromised IoT devices and routers to launch high-traffic DDoS attacks. In just three months, the massive Aisuru botnet launched more than 1,300 DDoS ...

Immagine del sito
Inside Lazarus! The fake candidate who fooled North Korean cyber spies
Di Redazione RHC - 03/12/2025

A joint investigation by BCA LTD, NorthScan, and ANY.RUN has exposed one of North Korea’s most secretive hacking schemes. Under the guise of routine recruitment, the team monitored how operators fro...

Immagine del sito
Google Chrome 143 Patch Fixes Critical V8 JavaScript Vulnerability
Di Redazione RHC - 03/12/2025

Google has released Chrome 143 for Windows, macOS, and Linux; the release contains an important patch. The new version ( 143.0.7499.40 for Linux and 143.0.7499.40/41 for Windows and macOS) addresses 1...

Immagine del sito
Cybersecurity in December: How Compliance Hurries Leave Companies Vulnerable
Di Ambra Santoro - 03/12/2025

December isn’t just about Christmas lights: for those working in cybersecurity, it’s the month when the human factor collapses and companies rush to buy solutions just to be “compliant” for th...

Immagine del sito
WiFi Network Security: Protect Against Hacking with WPA3 and ARP Spoofing
Di Francesco Demarcus - 02/12/2025

In today’s environment, securing a network requires much more than setting a complex password. A cyber attack against a wireless network follows a structured path that evolves from passive monitorin...

Oracle under attack: Pre-auth RCE vulnerability discovered that compromises entire systems

A vulnerability, designated CVE-2025-61757, was made public by Searchlight Cyber last Thursday. Company researchers discovered the issue and notified ...
Redazione RHC - 22/11/2025 - 12:31

CrowdStrike Insider Fired for Providing Sensitive Data to Criminal Hackers

In recent months, the insider problem has become increasingly important for large companies , and one recent episode involved CrowdStrike. The cyberse...
Redazione RHC - 22/11/2025 - 09:29

Sysmon will finally be integrated into Windows 11 and Windows Server 2025 in 2026

Microsoft has announced that it will integrate the popular Sysmon tool directly into Windows 11 and Windows Server 2025 in 2026. The announcement was ...
Redazione RHC - 22/11/2025 - 08:53

Sneaky2FA: The phishing scam that steals credentials with browser-in-the-browser attacks

Push Security specialists have noticed that the Sneaky2FA phishing platform now supports browser-in-the-browser attacks, which allow the creation of f...
Redazione RHC - 22/11/2025 - 08:39

TamperedChef: Malware via Fake App Installers

The large-scale TamperedChef campaign is once again attracting the attention of specialists, as attackers continue to distribute malware via fake inst...
Redazione RHC - 21/11/2025 - 19:20

Whoever took down Cloudflare during the outage put their infrastructure at risk

A major outage in Cloudflare's infrastructure has unexpectedly tested the robustness of the cloud and its security systems for many businesses. On Nov...
Redazione RHC - 21/11/2025 - 17:20
1 13 14 15 16 17 264

Oracle under attack: Pre-auth RCE vulnerability discovered that compromises entire systems

- November 21st, 2025

A vulnerability, designated CVE-2025-61757, was made public by Searchlight Cyber last Thursday. Company researchers discovered the issue and notified Oracle, which led to its disclosure. Oracle fixed CVE-2025-61757 with the...

Facebook Linkedin X

CrowdStrike Insider Fired for Providing Sensitive Data to Criminal Hackers

- November 21st, 2025

In recent months, the insider problem has become increasingly important for large companies , and one recent episode involved CrowdStrike. The cybersecurity firm has in fact removed an employee believed...

Facebook Linkedin X

Sysmon will finally be integrated into Windows 11 and Windows Server 2025 in 2026

- November 21st, 2025

Microsoft has announced that it will integrate the popular Sysmon tool directly into Windows 11 and Windows Server 2025 in 2026. The announcement was made by Sysinternals creator Mark Russinovich....

Facebook Linkedin X

Sneaky2FA: The phishing scam that steals credentials with browser-in-the-browser attacks

- November 21st, 2025

Push Security specialists have noticed that the Sneaky2FA phishing platform now supports browser-in-the-browser attacks, which allow the creation of fake login windows and the theft of credentials and sessions. Sneaky2FA...

Facebook Linkedin X

TamperedChef: Malware via Fake App Installers

- November 20th, 2025

The large-scale TamperedChef campaign is once again attracting the attention of specialists, as attackers continue to distribute malware via fake installers of popular applications. This scam, disguised as legitimate software,...

Facebook Linkedin X

Whoever took down Cloudflare during the outage put their infrastructure at risk

- November 20th, 2025

A major outage in Cloudflare's infrastructure has unexpectedly tested the robustness of the cloud and its security systems for many businesses. On November 18, service outages caused websites around the...

Facebook Linkedin X

Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE