Welcome to Red Hot Cyber | Cybersecurity News
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Search
Fortinet 320x100px
LECS 970x120 1

Red Hot Cyber. The Cybersecurity Blog

Previous Next

Featured Articles

Immagine del sito
React2Shell Vulnerability: 8.7M Servers at Risk – CVE-2025-55182
Di Redazione RHC - 05/12/2025

In 2025, the IT and security communities are buzzing with excitement over a single name: ” React2Shell .” With the disclosure of a new vulnerability, CVE-2025-55182, classified as CVSS 10.0, devel...

Immagine del sito
Cloudflare Just Broke the Internet… Again. Centralization Risks Exposed
Di Redazione RHC - 05/12/2025

Cloudflare is back in the spotlight after a new wave of outages that, on December 5, 2025, is affecting several components of the platform. In addition to the Dashboard and API issues already reported...

Immagine del sito
Splunk Enterprise Vulnerability: CVE-2025-20386 and CVE-2025-20387
Di Redazione RHC - 05/12/2025

Security researchers have discovered two high-risk vulnerabilities (CVE-2025-20386 and CVE-2025-20387, with CVSS severity 8.0) affecting the Splunk Enterprise platform and Universal Forwarder componen...

Immagine del sito
Apache HTTP Server Update Fixes Critical Security Vulnerabilities
Di Redazione RHC - 05/12/2025

The Apache Software Foundation has released a significant update for its popular Apache HTTP Server , addressing a total of five separate security vulnerabilities. Administrators are recommended to ap...

Immagine del sito
Anonymity for Sale: Russian SIM Card Market Thrives Amid Regulations
Di Redazione RHC - 04/12/2025

Efforts by legislators and law enforcement to combat money laundering and more complex SIM card verification procedures have not significantly weakened the position of anonymous number dealers. This c...

Google Gemini Improves AI-Generated Image Verification

Google has expanded the capabilities of its Gemini artificial intelligence service by adding a tool to the app and web version to check images for sig...
Redazione RHC - 23/11/2025 - 09:37

“We Want to Hack You Again!” NSO Group Rejects WhatsApp’s Pegasus Lawsuit

Israeli company NSO Group has appealed a California federal court ruling that bars it from using WhatsApp's infrastructure to distribute its Pegasus s...
Redazione RHC - 22/11/2025 - 19:32

Oracle under attack: Pre-auth RCE vulnerability discovered that compromises entire systems

A vulnerability, designated CVE-2025-61757, was made public by Searchlight Cyber last Thursday. Company researchers discovered the issue and notified ...
Redazione RHC - 22/11/2025 - 12:31

CrowdStrike Insider Fired for Providing Sensitive Data to Criminal Hackers

In recent months, the insider problem has become increasingly important for large companies , and one recent episode involved CrowdStrike. The cyberse...
Redazione RHC - 22/11/2025 - 09:29

Sysmon will finally be integrated into Windows 11 and Windows Server 2025 in 2026

Microsoft has announced that it will integrate the popular Sysmon tool directly into Windows 11 and Windows Server 2025 in 2026. The announcement was ...
Redazione RHC - 22/11/2025 - 08:53

Sneaky2FA: The phishing scam that steals credentials with browser-in-the-browser attacks

Push Security specialists have noticed that the Sneaky2FA phishing platform now supports browser-in-the-browser attacks, which allow the creation of f...
Redazione RHC - 22/11/2025 - 08:39
1 16 17 18 19 20 267

Google Gemini Improves AI-Generated Image Verification

- November 22nd, 2025

Google has expanded the capabilities of its Gemini artificial intelligence service by adding a tool to the app and web version to check images for signs of automatic generation ....

Facebook Linkedin X

“We Want to Hack You Again!” NSO Group Rejects WhatsApp’s Pegasus Lawsuit

- November 21st, 2025

Israeli company NSO Group has appealed a California federal court ruling that bars it from using WhatsApp's infrastructure to distribute its Pegasus surveillance software. The case, which has been ongoing...

Facebook Linkedin X

Oracle under attack: Pre-auth RCE vulnerability discovered that compromises entire systems

- November 21st, 2025

A vulnerability, designated CVE-2025-61757, was made public by Searchlight Cyber last Thursday. Company researchers discovered the issue and notified Oracle, which led to its disclosure. Oracle fixed CVE-2025-61757 with the...

Facebook Linkedin X

CrowdStrike Insider Fired for Providing Sensitive Data to Criminal Hackers

- November 21st, 2025

In recent months, the insider problem has become increasingly important for large companies , and one recent episode involved CrowdStrike. The cybersecurity firm has in fact removed an employee believed...

Facebook Linkedin X

Sysmon will finally be integrated into Windows 11 and Windows Server 2025 in 2026

- November 21st, 2025

Microsoft has announced that it will integrate the popular Sysmon tool directly into Windows 11 and Windows Server 2025 in 2026. The announcement was made by Sysinternals creator Mark Russinovich....

Facebook Linkedin X

Sneaky2FA: The phishing scam that steals credentials with browser-in-the-browser attacks

- November 21st, 2025

Push Security specialists have noticed that the Sneaky2FA phishing platform now supports browser-in-the-browser attacks, which allow the creation of fake login windows and the theft of credentials and sessions. Sneaky2FA...

Facebook Linkedin X

Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE