Contact
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.
Banner Ancharia Mobile 1
Banner Desktop

Red Hot Cyber. The Cybersecurity Blog

A $500 Tool Claims to Kill EDRs at Kernel Level: Inside the NtKiller Underground Ad
Webrat Malware Targets Security Researchers with GitHub Exploit Traps
A backdoor in NVIDIA code. Three 9.8 bugs plague AI and robotics development systems
La Poste Hit by Pro-Russian DDoS Attack During Peak Holiday Season
CVE-2025-47761: FortiClient VPN Zero-Day Exploit Lets Privilege Escalation
Critical MongoDB Vulnerability Exposed: CVE-2025-14847
RansomHouse Ransomware Upgraded: Enhanced Encryption Threat
Cyber Attacks on the Rise: Wiper Malware and Data Destruction in 2025
MS13-089 Ransomware: Double Extortion Without Encryption
Microsoft Shifts Activation Process: What It Means for Air-Gapped Systems
Previous Next

Ultime news

CrowdStrike Insider Fired for Providing Sensitive Data to Criminal Hackers Cybercrime

CrowdStrike Insider Fired for Providing Sensitive Data to Criminal Hackers

In recent months, the insider problem has become increasingly important for large companies , and one recent episode involved CrowdStrike....
Redazione RHC - 22 November 2025
Sysmon will finally be integrated into Windows 11 and Windows Server 2025 in 2026 Cybercrime

Sysmon will finally be integrated into Windows 11 and Windows Server 2025 in 2026

Microsoft has announced that it will integrate the popular Sysmon tool directly into Windows 11 and Windows Server 2025 in...
Redazione RHC - 22 November 2025
Sneaky2FA: The phishing scam that steals credentials with browser-in-the-browser attacks Cybercrime

Sneaky2FA: The phishing scam that steals credentials with browser-in-the-browser attacks

Push Security specialists have noticed that the Sneaky2FA phishing platform now supports browser-in-the-browser attacks, which allow the creation of fake...
Redazione RHC - 22 November 2025
TamperedChef: Malware via Fake App Installers Cybercrime

TamperedChef: Malware via Fake App Installers

The large-scale TamperedChef campaign is once again attracting the attention of specialists, as attackers continue to distribute malware via fake...
Redazione RHC - 21 November 2025
Whoever took down Cloudflare during the outage put their infrastructure at risk Culture

Whoever took down Cloudflare during the outage put their infrastructure at risk

A major outage in Cloudflare's infrastructure has unexpectedly tested the robustness of the cloud and its security systems for many...
Redazione RHC - 21 November 2025
Critical Vulnerability in Azure Bastion Scores 10! When RDP and SSH in the Cloud Are Checkmated Cybercrime

Critical Vulnerability in Azure Bastion Scores 10! When RDP and SSH in the Cloud Are Checkmated

An authentication bypass vulnerability has been discovered in Azure Bastion , Microsoft's managed service that enables secure RDP and SSH...
Redazione RHC - 21 November 2025
« Precedente   Successivo »

Double-dealing: employees of a company that resolved ransomware attacks were launching them themselves

- November 7th, 2025

Three former DigitalMint employees, who investigated ransomware incidents and negotiated with ransomware groups, are accused of hacking into the networks of five American companies. According to the U.S. Department of...
Share on Facebook Share on LinkedIn Share on X

Cybersecurity is democratic: the same virus hits multinationals and housewives

- November 7th, 2025

The same malware that yesterday blocked the servers of a major bank today encrypts Mrs. Pina's photos on her home PC. As? With an innocuous WhatsApp message, sent by his...
Share on Facebook Share on LinkedIn Share on X

2 critical bugs detected on Cisco Unified Contact Center Express (CCX)

- November 7th, 2025

Cisco has published two new critical vulnerabilities affecting Cisco Unified Contact Center Express (CCX) , the platform used by thousands of companies to manage contact centers and unified communications. The...
Share on Facebook Share on LinkedIn Share on X

China is using artificial intelligence to improve mass surveillance

- November 6th, 2025

In Beijing, in a banquet hall of a luxury hotel, police officers from across the country attended a conference dedicated to the application of artificial intelligence to public safety ....
Share on Facebook Share on LinkedIn Share on X

Microsoft apologizes to 3 million Australian users for unfair business practices

- November 6th, 2025

Microsoft has apologised to nearly 3 million Australian users and offered them refunds for subscriptions to its new, more expensive Microsoft 365 office suite , which includes Copilot, an AI-powered...
Share on Facebook Share on LinkedIn Share on X

Cisco Addresses Critical Vulnerabilities in ASA and Unified Contact Center Express

- November 6th, 2025

Cisco recently announced the discovery of a new type of cyberattack aimed at compromising devices running Cisco Secure Firewall Adaptive Security Appliance (ASA) and Cisco Secure Firewall Threat Defense (FTD)...
Share on Facebook Share on LinkedIn Share on X

Rust Rebels! Fund Launched to Pay Open Source Maintainers

- November 6th, 2025

The Rust Foundation has announced the launch of the Maintainers Fund, a new program designed to support developers responsible for the stability and development of the Rust ecosystem. This step...
Share on Facebook Share on LinkedIn Share on X

12.5 million HD movies per second! Amazon’s undersea cable will connect the US to Ireland.

- November 6th, 2025

In a few years, Ireland and the United States will be connected by an undersea communications cable designed to help Amazon improve its AWS services. Undersea cables are a vital...
Share on Facebook Share on LinkedIn Share on X

SMTP Posts Actively Exploited: 400,000 WordPress Sites at Risk

- November 6th, 2025

Attackers are targeting WordPress websites by exploiting a critical vulnerability in the Post SMTP plugin, which has over 400,000 installations. Hackers are hijacking administrator accounts and gaining complete control over...
Share on Facebook Share on LinkedIn Share on X

They told you 6G would be fast, right? But they didn’t tell you the whole truth

- November 6th, 2025

It's not “ just faster ”: 6G changes the very nature of the network! When we talk about 6G, we risk reducing everything to a speed upgrade, as if the...
Share on Facebook Share on LinkedIn Share on X

Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

Featured Articles

Immagine del sitoCybercrime
A $500 Tool Claims to Kill EDRs at Kernel Level: Inside the NtKiller Underground Ad
Redazione RHC - 25/12/2025

An ad has surfaced on a closed underground forum frequented by malware operators and initial access brokers, attracting the attention of the cyber threat intelligence community. The post promotes “NtKiller,” a supposed “kernel-level” utility designed…

Immagine del sitoCybercrime
Webrat Malware Targets Security Researchers with GitHub Exploit Traps
Redazione RHC - 24/12/2025

There’s a specific moment, almost always at night, when curiosity overtakes caution. A newly opened repository, few stars but a success. very high score, the README file is well written enough to seem real. This…

Immagine del sitoCybercrime
A backdoor in NVIDIA code. Three 9.8 bugs plague AI and robotics development systems
Redazione RHC - 24/12/2025

When it comes to cybersecurity, you can never be too careful. Furthermore, when we talk about backdoors (or alleged ones), the question that follows is: who inserted them? Was it for maintenance purposes or for…

Immagine del sitoCybercrime
La Poste Hit by Pro-Russian DDoS Attack During Peak Holiday Season
Redazione RHC - 23/12/2025

According to internal sources at RedHotCyber , the digital offensive that is causing problems for the National Postal System in France has been officially claimed by the pro-Russian hacker collective NoName057(16). Analysts confirm that the…

Immagine del sitoVulnerability
CVE-2025-47761: FortiClient VPN Zero-Day Exploit Lets Privilege Escalation
Manuel Roccon - 23/12/2025

The following analysis examines the attack vector for CVE-2025-47761 , a vulnerability found in the Fortips_74.sys kernel driver used by FortiClient VPN for Windows. The core of the vulnerability lies in a mishandled IOCTL that…