Red Hot Cyber

Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.

Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.

Banner Ransomfeed 320x100 1

970x120 Olympous

Red Hot Cyber. The Cybersecurity Blog

Larva-25012 Proxyjacking Campaign Targets South Korea with Notepad++ Malware

PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms

KONNI Malware Targets Crypto Developers with AI-Powered Attacks

Fortinet FortiOS Vulnerability Exploited: CVE-2025-59718 Patch Bypass

Cisco Zero-Day Vulnerability CVE-2026-20045 Actively Exploited

Red Hot Cyber and Hack The Box: together for the CTF at the RHC 2026 conference

Everest Ransomware Attacks McDonald’s, 861GB Data Stolen

ESXi Zero-Day Exploit: How to Protect Your VMware Environment

Google Fast Pair Vulnerability: WhisperPair Exposes Millions of Devices

Elon Musk Sues OpenAI for $134 Billion Over AI Betrayal

Ultime news

Microsoft Shifts to Rust: AI-Driven Code Transformation by 2030

Cybercrime

Microsoft Shifts to Rust: AI-Driven Code Transformation by 2030

Microsoft has launched one of the most ambitious code transformation programs ever announced in the software industry: the stated goal...

Redazione RHC - 7 January 2026

Microsoft’s AI Future: Models to Systems with Satya Nadella

Cybercrime

Microsoft’s AI Future: Models to Systems with Satya Nadella

With 2026 just around the corner, Microsoft CEO Satya Nadella shared a thoughtful reflection on the state of the AI...

Redazione RHC - 6 January 2026

Rare Earth Elements: US-China Competition Heats Up

Cybercrime

Rare Earth Elements: US-China Competition Heats Up

An increasingly pressing question is emerging in the United States: after a long series of bans, restrictions, and closures against...

Redazione RHC - 6 January 2026

Patchwork Group Unleashes StreamSpy Malware with WebSocket C2 Channel

Cybercrime

Patchwork Group Unleashes StreamSpy Malware with WebSocket C2 Channel

The Patchwork hacker group, also known as Dropping Elephant and Maha Grass , has returned to the spotlight after a...

Redazione RHC - 6 January 2026

WhatsApp Device Fingerprinting: New Measures Against Privacy Threats

Cybercrime

WhatsApp Device Fingerprinting: New Measures Against Privacy Threats

WhatsApp, Meta's messaging app with over 3 billion monthly active users, has begun introducing technical changes to mitigate several privacy...

Redazione RHC - 6 January 2026

Microsoft Removes Phone Activation for Windows and Office

Cybercrime

Microsoft Removes Phone Activation for Windows and Office

Microsoft has finally removed the option to activate Windows and Office over the phone . While the company still includes...

Redazione RHC - 6 January 2026

« Precedente Successivo »

Webrat Malware Targets Security Researchers with GitHub Exploit Traps

Redazione RHC - December 24th, 2025

There's a specific moment, almost always at night, when curiosity overtakes caution. A newly opened repository, few stars but a success. very high score, the README file is well written...

Nezha Malware: Abusing Legitimate Tools for Remote Access

Redazione RHC - December 24th, 2025

There comes a moment, often too late, when you realize the problem didn't come from forcing the door, but from using the house keys. This is what happens when a...

Massive Cloud Cyberespionage: PCPcat Hits 59,128 Servers in 48 Hours

Redazione RHC - December 24th, 2025

A large-scale, highly automated cyberespionage campaign is systematically targeting the cloud infrastructure that supports numerous modern web applications. In less than 48 hours, tens of thousands of servers have been...

Critical Net-SNMP Vulnerability Exposes Networks to RCE Attacks

Redazione RHC - December 24th, 2025

A critical vulnerability has been discovered in the Net-SNMP software suite, widely used globally for network management and monitoring. The flaw, classified as CVE-2025-68615, has a CVSS score of 9.8,...

A backdoor in NVIDIA code. Three 9.8 bugs plague AI and robotics development systems

Redazione RHC - December 24th, 2025

When it comes to cybersecurity, you can never be too careful. Furthermore, when we talk about backdoors (or alleged ones), the question that follows is: who inserted them? Was it...

Australia Boosts Papua New Guinea’s Digital Infra with New Undersea Cable

Redazione RHC - December 23rd, 2025

A new undersea cable funded by Australia under a recent mutual defence agreement with Papua New Guinea is set to strengthen the island country's digital infrastructure and ensure continuity of...

China Issues First Level 3 Autonomous Driving Licenses, Paving Way for Self-Driving Cars

Redazione RHC - December 23rd, 2025

On December 23, the Traffic Management Bureau of the Beijing Municipal Public Security Bureau officially issued the first batch of Level 3 autonomous driving license plates to three intelligent vehicles....

Nvidia H200 Chip Shipments to China Set to Begin

Redazione RHC - December 23rd, 2025

Nvidia has informed its customers in China of its intention to begin shipping the first H200 chip, the company's second-most powerful AI accelerator, before New Year's Eve. The information was...

La Poste Hit by Pro-Russian DDoS Attack During Peak Holiday Season

Redazione RHC - December 23rd, 2025

According to internal sources at RedHotCyber , the digital offensive that is causing problems for the National Postal System in France has been officially claimed by the pro-Russian hacker collective...

Spotify Web Scraping: Anna’s Archive Scrapes 300TB of Music Library

Redazione RHC - December 23rd, 2025

Activists and hackers at Anna's Archive have reportedly combed nearly the entire music library of the largest streaming service, Spotify. They claim to have collected metadata for 256 million tracks...

Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

Featured Articles

Immagine del sito

Cybercrime

Larva-25012 Proxyjacking Campaign Targets South Korea with Notepad++ Malware

Redazione RHC - 22/01/2026

A sophisticated proxyjacking campaign is targeting systems in South Korea, attributed to the actor Larva-25012 , which distributes proxyware disguised as legitimate Notepad++ installers. The campaign demonstrates significant technical evolution, using process injection in explorer.exe…

Immagine del sito

Cybercrime

PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms

Redazione RHC - 22/01/2026

For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using fake job interviews to attack companies in Europe, Asia, the Middle East, and Central America.…

Immagine del sito

Cybercrime

KONNI Malware Targets Crypto Developers with AI-Powered Attacks

Redazione RHC - 22/01/2026

Check Point Research recently discovered a sophisticated phishing campaign orchestrated by KONNI , a threat group linked to North Korea . Historically focused on diplomatic targets in South Korea, the malicious actor has now expanded…

Immagine del sito

Cybercrime

Fortinet FortiOS Vulnerability Exploited: CVE-2025-59718 Patch Bypass

Redazione RHC - 22/01/2026

Attackers are exploiting a previously patched critical FortiGate authentication flaw (CVE-2025-59718) through a patch bypass method to breach protected firewalls, as Fortinet customers are experiencing. Fortinet reportedly plans to soon release FortiOS versions 7.4.11, 7.6.6,…

Immagine del sito

Cybercrime

Cisco Zero-Day Vulnerability CVE-2026-20045 Actively Exploited

Redazione RHC - 22/01/2026

A critical zero-day remote code execution (RCE) vulnerability, identified as CVE-2026-20045, has been discovered by Cisco and is being actively exploited in active attacks. Cisco has urged immediate patching, and its Product Security Incident Response…