Contact
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.
Banner Mobile
Crowdstriker 970×120

Red Hot Cyber. The Cybersecurity Blog

A $500 Tool Claims to Kill EDRs at Kernel Level: Inside the NtKiller Underground Ad
Webrat Malware Targets Security Researchers with GitHub Exploit Traps
A backdoor in NVIDIA code. Three 9.8 bugs plague AI and robotics development systems
La Poste Hit by Pro-Russian DDoS Attack During Peak Holiday Season
CVE-2025-47761: FortiClient VPN Zero-Day Exploit Lets Privilege Escalation
Critical MongoDB Vulnerability Exposed: CVE-2025-14847
RansomHouse Ransomware Upgraded: Enhanced Encryption Threat
Cyber Attacks on the Rise: Wiper Malware and Data Destruction in 2025
MS13-089 Ransomware: Double Extortion Without Encryption
Microsoft Shifts Activation Process: What It Means for Air-Gapped Systems
Previous Next

Ultime news

ToddyCat APT Group Targets Microsoft 365 Email Security Cybercrime

ToddyCat APT Group Targets Microsoft 365 Email Security

Email security continues to be one of the most critical points in modern cyber attacks. While compromising a Windows domain...
Redazione RHC - 27 November 2025
Tor Boosts Security with Counter Galois Onion CGO Encryption Cybercrime

Tor Boosts Security with Counter Galois Onion CGO Encryption

The Tor project has announced the introduction of a new encryption scheme, called Counter Galois Onion (CGO) , intended to...
Redazione RHC - 27 November 2025
WormGPT 4: AI-Powered Cybercrime Tools on the Rise Cybercrime

WormGPT 4: AI-Powered Cybercrime Tools on the Rise

Cybercriminals no longer need to convince ChatGPT or Claude Code to write malware or data-stealing scripts. A whole class of...
Redazione RHC - 26 November 2025
EU lawmakers push for Microsoft alternative to boost tech sovereignty Cybercrime

EU lawmakers push for Microsoft alternative to boost tech sovereignty

A group of members of the European Parliament have called for Microsoft to abandon its internal use of products and...
Redazione RHC - 26 November 2025
Investment Scam Alert: How to Avoid Losing Thousands Cybercrime

Investment Scam Alert: How to Avoid Losing Thousands

Hi everyone... my name is Marco, I'm 37 years old and I work as an administrative clerk in an accounting...
Redazione RHC - 26 November 2025
Trump Launches Genesis AI Mission to Revolutionize US Science Cybercrime

Trump Launches Genesis AI Mission to Revolutionize US Science

US President Donald Trump signed an executive order, " Launching the Genesis Mission," establishing a national program for the use...
Redazione RHC - 26 November 2025
« Precedente   Successivo »

Synology fixes a zero-day bug in BeeStation OS. Researchers receive $40,000.

- November 12th, 2025

Synology has patched a zero-day vulnerability in its BeeStation devices, demonstrated during the recent Pwn2Own competition. The bug, identified as CVE-2025-12686, falls under the category of "buffer copying without input...
Share on Facebook Share on LinkedIn Share on X

Connecting to public Wi-Fi? Even HTTPS isn’t safe! Let’s find out with this tutorial.

- November 12th, 2025

Many people believe that accessing only HTTPS sites is enough to ensure security when browsing on unsecured Wi-Fi networks. Spoiler alert: this belief is also a false sense of security....
Share on Facebook Share on LinkedIn Share on X

Myths and DNS Spoofing: If I Don’t Make Payments or Log In Online, Am I Really Safe?

- November 12th, 2025

It's often thought that avoiding online dangers is as simple as not making payments or entering credentials while browsing. This approach, while seemingly prudent, is profoundly flawed for several reasons—especially...
Share on Facebook Share on LinkedIn Share on X

Protecting your WiFi by hiding the name? This is a false sense of security

- November 12th, 2025

Security, especially when it comes to WiFi networks, is often the subject of misunderstandings and clichés. In this series of articles in our WiFI column , we aim to debunk...
Share on Facebook Share on LinkedIn Share on X

Open WiFi Networks: A Fertile Ground for Cybercrime

- November 12th, 2025

Nowadays, the proliferation of portable, wearable, and other smart devices has made data exchange, access to resources, and web browsing indispensable. This in-depth look at Wi-Fi focuses on a widely...
Share on Facebook Share on LinkedIn Share on X

Midnight Ransomware: A free decryptor has been released thanks to a bug in the code.

- November 12th, 2025

Researchers have discovered a vulnerability in the new Midnight ransomware , based on the old Babuk source code. The malware is marketed as an "advanced" version of the malware, but...
Share on Facebook Share on LinkedIn Share on X

NetScaler ADC and Gateway Vulnerable: Urgent Updates to Prevent XSS Attacks

- November 12th, 2025

NetScaler and Citrix - On November 11, 2025, released security bulletin CTX695486 regarding the CVE-2025-12101 vulnerability, which affects the NetScaler ADC and NetScaler Gateway products. The vulnerability is rated "...
Share on Facebook Share on LinkedIn Share on X

LLM: Wikipedia Parasites: The Importance of Humanity in the Age of Artificial Intelligence

- November 12th, 2025

In the age of rapid advances in artificial intelligence, Wikipedia's importance as a reliable source of knowledge has become particularly significant. While neural networks generate text, images, and videos, their...
Share on Facebook Share on LinkedIn Share on X

The Accident That Liberated Generative AI. An Analysis of the “Plane Crash” Prompt

- November 12th, 2025

A plane crashes in a snowy forest. Some of the passengers survive, others do not. The survivors are starving, desperate, and find refuge in a village cut off from the...
Share on Facebook Share on LinkedIn Share on X

OWASP Top 10 2025: New Web Application Threats, Supply Chain Top Three

- November 12th, 2025

After four years, OWASP has updated its TOP 10 list of the most dangerous web application risks, adding two new categories and revising the ranking structure. The organization has released...
Share on Facebook Share on LinkedIn Share on X

Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

Featured Articles

Immagine del sitoCybercrime
A $500 Tool Claims to Kill EDRs at Kernel Level: Inside the NtKiller Underground Ad
Redazione RHC - 25/12/2025

An ad has surfaced on a closed underground forum frequented by malware operators and initial access brokers, attracting the attention of the cyber threat intelligence community. The post promotes “NtKiller,” a supposed “kernel-level” utility designed…

Immagine del sitoCybercrime
Webrat Malware Targets Security Researchers with GitHub Exploit Traps
Redazione RHC - 24/12/2025

There’s a specific moment, almost always at night, when curiosity overtakes caution. A newly opened repository, few stars but a success. very high score, the README file is well written enough to seem real. This…

Immagine del sitoCybercrime
A backdoor in NVIDIA code. Three 9.8 bugs plague AI and robotics development systems
Redazione RHC - 24/12/2025

When it comes to cybersecurity, you can never be too careful. Furthermore, when we talk about backdoors (or alleged ones), the question that follows is: who inserted them? Was it for maintenance purposes or for…

Immagine del sitoCybercrime
La Poste Hit by Pro-Russian DDoS Attack During Peak Holiday Season
Redazione RHC - 23/12/2025

According to internal sources at RedHotCyber , the digital offensive that is causing problems for the National Postal System in France has been officially claimed by the pro-Russian hacker collective NoName057(16). Analysts confirm that the…

Immagine del sitoVulnerability
CVE-2025-47761: FortiClient VPN Zero-Day Exploit Lets Privilege Escalation
Manuel Roccon - 23/12/2025

The following analysis examines the attack vector for CVE-2025-47761 , a vulnerability found in the Fortips_74.sys kernel driver used by FortiClient VPN for Windows. The core of the vulnerability lies in a mishandled IOCTL that…