Home Page - Red Hot Cyber

The Evil Purr – DarkLab Interview to HellCat Ransomware!

RHC Dark Lab - March 30th, 2025 - (Posted in Cybercrime and Darknet)

HellCat ransomware appeared in the second half of 2024 with and it has attracted the attentions of analysts thanks to the humor within their public statements. We recall the attack to Schneider Electric in France where the group ended up to request a "baguette payment” in their DLS. HellCat group...

Xehook Stealer: The Rise and Sale of a Formidable Stealer Malware

Pietro Melillo - June 26th, 2024

Introduction Xehook Stealer is a sophisticated malware targeting Windows operating systems, first discovered in January 2024. Within a year, Xehook has rapidly gained notoriety for its advanced data collection capabilities...

DataLeak Microsoft: 4GB of Microsoft PlayReady Code Made Public!

Pietro Melillo - June 26th, 2024

On June 11, a Microsoft engineer inadvertently made 4GB of internal code related to Microsoft PlayReady public. The information leak occurred on the Microsoft Developer Community, a forum dedicated to...

Linux Kernel UAF 0-day Vulnerability on sale in the Dark Web

RHC Dark Lab - June 25th, 2024

Recently, a security alert shaked the infosec environment: A malicious actor has announced the sale of Use After Free (UAF) 0-day vulnerability affecting the Linux Kernel on the well-known darknet...

WordPress: Five Plugins Found with Malicious Code

Pietro Melillo - June 25th, 2024

On June 24, 2024, Wordfence revealed a supply chain attack on WordPress plugins, leading to the compromise of five plugins with malicious code. The affected plugins are: Social Warfare (versions...