Red Hot Cyber

Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.

Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.

Banner Ransomfeed 320x100 1

LECS 970x120 1

Red Hot Cyber. The Cybersecurity Blog

Veeam Backup Vulnerability: Critical RCE Flaw Discovered – Update Now

When Attack Discovery Becomes Automated, Detection Stops Scaling

CVE-2026-21858: n8n Vulnerability Exposes Thousands of Servers to RCE

Disable Windows 11 AI Features Easily with RemoveWindowsAI Tool

DevSecOps: Integrating Security into Your Development Process

WhatsApp Device Fingerprinting: New Measures Against Privacy Threats

PS5 BootROM Key Leaked, Sony’s Security Compromised

Windows 11 Performance Test: Surprising Results with Windows 8.1

Long-Lived Technologies: COBOL, C, SQL, and Legacy Systems

Finland Seizes Ship in Cable Damage Probe, Cites Security Threat

Ultime news

CVE-2025-47761: FortiClient VPN Zero-Day Exploit Lets Privilege Escalation

Vulnerability

CVE-2025-47761: FortiClient VPN Zero-Day Exploit Lets Privilege Escalation

The following analysis examines the attack vector for CVE-2025-47761 , a vulnerability found in the Fortips_74.sys kernel driver used by...

Manuel Roccon - 23 December 2025

Ukrainian Hacker Charged in Major Ransomware Attacks

Cybercrime

Ukrainian Hacker Charged in Major Ransomware Attacks

A Ukrainian man implicated in a series of ransomware attacks has been found guilty in the United States. These cybercrimes...

Redazione RHC - 23 December 2025

The Rise of Digital Walls: How National Sovereignty Threatens Global Internet

Cybercrime

The Rise of Digital Walls: How National Sovereignty Threatens Global Internet

As we always report on these pages, nations are pushing for the development of domestic software and hardware devices, that...

Redazione RHC - 23 December 2025

Critical MongoDB Vulnerability Exposed: CVE-2025-14847

Cybercrime

Critical MongoDB Vulnerability Exposed: CVE-2025-14847

A critical vulnerability has been identified in MongoDB, one of the most widely used NoSQL database platforms globally. This security...

Redazione RHC - 23 December 2025

Smart TV Spying: Major Brands Accused of Collecting User Data

Cybercrime

Smart TV Spying: Major Brands Accused of Collecting User Data

Texas Attorney General Ken Paxton has charged five major television manufacturers with illegally collecting user data using automatic content recognition...

Redazione RHC - 23 December 2025

Phishing Campaigns Exploit File Sharing Services

Cybercrime

Phishing Campaigns Exploit File Sharing Services

Researchers at Check Point, a pioneer and global leader in cybersecurity solutions, have discovered a phishing campaign in which attackers...

Redazione RHC - 23 December 2025

« Precedente Successivo »

GhostFrame Phishing Kit: New Stealthy PhaaS Threat Emerges

Redazione RHC - December 14th, 2025

Barracuda has released details of a new stealthy, evasive phishing-as-a-service (PhaaS) kit that hides malicious content within web page iframes to evade detection and maximize resilience. This is the first...

WhatsApp: all it takes is a phone number to know when you sleep, go out, or come home

Redazione RHC - December 14th, 2025

A tool has been released that allows for the discreet monitoring of WhatsApp and Signal user activity using just a phone number. The tracking mechanism covers over three billion accounts...

Cyber Geopolitics: How Tech Becomes a Global Battleground

Roberto Villani - December 14th, 2025

Over the past two years, cyber has ceased to be a " technical " dimension of the conflict and has become a strategic infrastructure. The consequence is a domino effect:...

SOAP Vulnerability in .NET Framework Allows Remote Code Execution

Redazione RHC - December 14th, 2025

Security researchers have discovered a vulnerability in .NET that could affect several enterprise products and lead to remote code execution. The issue stems from the way Microsoft .NET-based applications handle...

CVE-2025-55182 React Server Components Vulnerability Exploited

Redazione RHC - December 13th, 2025

A recent report from the Google Threat Intelligence Group (GTIG) illustrates the chaotic results of this information dissemination, highlighting how savvy adversaries have already gained a foothold within targeted networks....

Top 25 Software Vulnerabilities 2025: MITRE CWE Ranking and Security Tips

Redazione RHC - December 13th, 2025

MITRE has released its ranking of the 25 most dangerous software vulnerabilities predicted for 2025, based on data collected through the National Vulnerability Database. These vulnerabilities were identified by analyzing...

The Future of Work: 4-Day Week with AI and Tech Advances

Redazione RHC - December 13th, 2025

The prospect of a four-day workweek, with a resulting three-day long weekend, may not be far off. This is according to Christopher A. Pissarides , a British-Cypriot economist and Nobel...

ARTEMIS Leads in AI-Powered Pentesting, Outperforming Human Experts

Redazione RHC - December 13th, 2025

Stanford researchers and their colleagues conducted an unusual experiment: they compared the performance of ten professional specialists and a set of autonomous AI agents in a real-world corporate pentest. The...

Apple Patches Critical WebKit Vulnerabilities in iOS Update

Redazione RHC - December 13th, 2025

Following the discovery of two critical zero-day vulnerabilities in the WebKit browser engine, Apple has urgently released security updates for iPhone and iPad users. Both vulnerabilities reside in WebKit ,...

Kali Linux 2025.4: Discover the Power of Wayland and Enhanced Security Tools

Redazione RHC - December 12th, 2025

The recent 2025.4 release of Kali Linux has been made available to the public, introducing significant improvements to the GNOME, KDE, and Xfce desktop environments . From now on, Wayland...

Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

Featured Articles

Immagine del sito

Cybercrime

Veeam Backup Vulnerability: Critical RCE Flaw Discovered – Update Now

Redazione RHC - 08/01/2026

Backups are generally considered the last line of defense, but this week Veeam reminded us that backup systems themselves can become entry points for attacks. The company released security updates for Backup & Replication ,…

Immagine del sito

Cybercrime

When Attack Discovery Becomes Automated, Detection Stops Scaling

Alexander Rogan - 08/01/2026

For much of the past two decades, cybersecurity has been built on a simple assumption: malicious activity can be detected, analysed, and responded to before meaningful damage occurs. This assumption shaped everything from SOC design…

Immagine del sito

Cybercrime

CVE-2026-21858: n8n Vulnerability Exposes Thousands of Servers to RCE

Redazione RHC - 08/01/2026

The vulnerability, identified as CVE-2026-21858, which we recently reported on, affects approximately 100,000 servers worldwide, threatening to expose proprietary API keys, customer databases, and AI workflows. The vulnerability, with a CVSS score of 10, has…

Immagine del sito

Cybercrime

Disable Windows 11 AI Features Easily with RemoveWindowsAI Tool

Redazione RHC - 07/01/2026

A new open-source script allows Windows 11 users to widely disable the operating system’s built-in artificial intelligence features . The project, developed by Zoicware , is called RemoveWindowsAI and aims to offer greater control over…

Immagine del sito

Cybercrime

DevSecOps: Integrating Security into Your Development Process

Massimiliano Brolli - 07/01/2026

When it comes to application security, there’s rarely a single problem. It’s almost always a chain of small flaws, poor decisions, and missing controls that, when added together, pave the way for serious incidents. This…