Red Hot Cyber

Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.

Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.

Crowdstrike 320×100

970x120

Red Hot Cyber. The Cybersecurity Blog

Cyber Criminals Recruit Insiders: Companies at Risk of Internal Threats

Villager Framework: AI-Powered Penetration Testing Tool

A $500 Tool Claims to Kill EDRs at Kernel Level: Inside the NtKiller Underground Ad

Webrat Malware Targets Security Researchers with GitHub Exploit Traps

A backdoor in NVIDIA code. Three 9.8 bugs plague AI and robotics development systems

La Poste Hit by Pro-Russian DDoS Attack During Peak Holiday Season

CVE-2025-47761: FortiClient VPN Zero-Day Exploit Lets Privilege Escalation

Critical MongoDB Vulnerability Exposed: CVE-2025-14847

RansomHouse Ransomware Upgraded: Enhanced Encryption Threat

Cyber Attacks on the Rise: Wiper Malware and Data Destruction in 2025

Ultime news

Digital Stress: How to Achieve Balance in a Hyper-Connected World

Cybercrime

Digital Stress: How to Achieve Balance in a Hyper-Connected World

We live in dissociation: we praise work-life balance, yet we find ourselves constantly online, like puppets on invisible strings. The...

Daniela Farina - 11 December 2025

DeadLock Ransomware Exploits Baidu Antivirus Vulnerability for EDR Bypass

Cybercrime

DeadLock Ransomware Exploits Baidu Antivirus Vulnerability for EDR Bypass

Cisco Talos has identified a new ransomware campaign called DeadLock : attackers are exploiting a vulnerable Baidu antivirus driver (CVE-2024-51324)...

Redazione RHC - 11 December 2025

VPN Credentials on the Dark Web: A Growing Cybersecurity Threat

Cybercrime

VPN Credentials on the Dark Web: A Growing Cybersecurity Threat

In the darkest corners of the internet, the trafficking of stolen data and unauthorized access continues to thrive. A recent...

Redazione RHC - 11 December 2025

Uncovering Russia’s Cyber Operations: CISM’s Role in DDoS Attacks

Cybercrime

Uncovering Russia’s Cyber Operations: CISM’s Role in DDoS Attacks

What we wrote in the article " Patriotic Code: from DDoSia and NoName057(16) to CISM, the algorithm that shapes youth...

Redazione RHC - 11 December 2025

Microsoft Outlook RCE Vulnerability: Update Now to Prevent Attacks

Cybercrime

Microsoft Outlook RCE Vulnerability: Update Now to Prevent Attacks

A critical remote code execution (RCE) vulnerability in Outlook has been patched by Microsoft, potentially allowing attackers to run malicious...

Redazione RHC - 11 December 2025

Google Chrome Urgent Update Fixes Zero-Day Vulnerability

Cybercrime

Google Chrome Urgent Update Fixes Zero-Day Vulnerability

An urgent update has been released by Google for the stable version of the Desktop browser, in order to address...

Redazione RHC - 11 December 2025

« Precedente Successivo »

Critical Vulnerability in Iskra iHUB Devices Exposed

Redazione RHC - December 3rd, 2025

A serious security vulnerability has been discovered in smart metering infrastructure, which could expose utility networks to remote takeover risks. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued...

Roblox Down Russia

Redazione RHC - December 3rd, 2025

Today, the Roblox gaming platform went offline in Russia. However, international services that monitor network outages reported no issues during the same period. The main complaints concerned the inability to...

Inside Lazarus! The fake candidate who fooled North Korean cyber spies

Redazione RHC - December 3rd, 2025

A joint investigation by BCA LTD, NorthScan, and ANY.RUN has exposed one of North Korea's most secretive hacking schemes. Under the guise of routine recruitment, the team monitored how operators...

Kawasaki CORLEO Robot Quadrupede for Human Transport by 2035

Redazione RHC - December 3rd, 2025

Kawasaki Heavy Industries plans to launch a quadruped robot capable of carrying humans in 2035. Kawasaki Heavy Industries announced on December 3 that it has begun production of " CORLEO...

Candle Subsea Cable Revolutionizes Asia-Pacific Internet Connectivity

Redazione RHC - December 3rd, 2025

70 million simultaneous 8K videos at 570 Tbps ! This is a staggering amount of transport power in a submarine cable and will change internet access in the Asia-Pacific region....

Google Chrome 143 Patch Fixes Critical V8 JavaScript Vulnerability

Redazione RHC - December 3rd, 2025

Google has released Chrome 143 for Windows, macOS, and Linux; the release contains an important patch. The new version ( 143.0.7499.40 for Linux and 143.0.7499.40/41 for Windows and macOS) addresses...

Cybersecurity in December: How Compliance Hurries Leave Companies Vulnerable

Ambra Santoro - December 3rd, 2025

December isn't just about Christmas lights: for those working in cybersecurity, it's the month when the human factor collapses and companies rush to buy solutions just to be "compliant" for...

Managing AI Agents: Mitigating Security Risks in Autonomous Systems

Redazione RHC - December 3rd, 2025

The widespread adoption of artificial intelligence in businesses is profoundly transforming operational processes and, at the same time, introducing new security vulnerabilities . Companies are using these systems to increase...

Mistral AI Unveils Powerful Open Source Models for Advanced AI Applications

Redazione RHC - December 3rd, 2025

French company Mistral AI has unveiled its Mistral 3 line of models, making them fully open source under the Apache 2.0 license . The series includes several compact and dense...

Maha Grass APT Group Unleashes StreamSpy Malware Attacks

Redazione RHC - December 3rd, 2025

The Patchwork cyber espionage group — also known as Hangover or Dropping Elephant and internally tracked by QiAnXin as APT-Q-36 — has been active since 2009 and is believed to...

Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

Featured Articles

Immagine del sito

Cybercrime

Cyber Criminals Recruit Insiders: Companies at Risk of Internal Threats

Redazione RHC - 27/12/2025

The cybercriminal community is rapidly increasing its interest in recruiting personnel from within companies . Instead of sophisticated external attacks, criminals are increasingly relying on internal sources— people willing to provide access to company systems…

Immagine del sito

Cybercrime

Villager Framework: AI-Powered Penetration Testing Tool

Redazione RHC - 26/12/2025

Straiker’s AI Research (STAR) team has identified Villager, a native AI-based penetration testing framework developed by the Chinese group Cyberspike . The tool, presented as a red team solution , is designed to fully automate…

Immagine del sito

Cybercrime

A $500 Tool Claims to Kill EDRs at Kernel Level: Inside the NtKiller Underground Ad

Redazione RHC - 25/12/2025

An ad has surfaced on a closed underground forum frequented by malware operators and initial access brokers, attracting the attention of the cyber threat intelligence community. The post promotes “NtKiller,” a supposed “kernel-level” utility designed…

Immagine del sito

Cybercrime

Webrat Malware Targets Security Researchers with GitHub Exploit Traps

Redazione RHC - 24/12/2025

There’s a specific moment, almost always at night, when curiosity overtakes caution. A newly opened repository, few stars but a success. very high score, the README file is well written enough to seem real. This…

Immagine del sito

Cybercrime

A backdoor in NVIDIA code. Three 9.8 bugs plague AI and robotics development systems

Redazione RHC - 24/12/2025

When it comes to cybersecurity, you can never be too careful. Furthermore, when we talk about backdoors (or alleged ones), the question that follows is: who inserted them? Was it for maintenance purposes or for…