Red Hot Cyber. The Cybersecurity Blog
Featured Articles
A recent study by Datadog Security Labs reveals an ongoing operation targeting organizations using Microsoft 365 and Okta for single sign-on (SSO) authentication. This operation uses sophisticated tec...
The React Server component security saga continues this week. Following the patching of a critical remote code execution (RCE) vulnerability that led to React2shell, researchers have discovered two ne...
Cisco Talos has identified a new ransomware campaign called DeadLock : attackers are exploiting a vulnerable Baidu antivirus driver (CVE-2024-51324) to disable EDR systems using the Bring Your Own Vul...
What we wrote in the article ” Patriotic Code: from DDoSia and NoName057(16) to CISM, the algorithm that shapes youth for Putin ” on Red Hot Cyber on July 23rd is now fully consistent with the inf...
Gartner analysts have urged businesses to temporarily stop using browsers with built-in artificial intelligence (AI) capabilities . In a recent advisory, the company emphasizes that such tools pose un...
Synology fixes a zero-day bug in BeeStation OS. Researchers receive $40,000.
Connecting to public Wi-Fi? Even HTTPS isn’t safe! Let’s find out with this tutorial.
Myths and DNS Spoofing: If I Don’t Make Payments or Log In Online, Am I Really Safe?
Protecting your WiFi by hiding the name? This is a false sense of security
Open WiFi Networks: A Fertile Ground for Cybercrime
Midnight Ransomware: A free decryptor has been released thanks to a bug in the code.
Synology fixes a zero-day bug in BeeStation OS. Researchers receive $40,000.
Redazione RHC - November 11th, 2025
Synology has patched a zero-day vulnerability in its BeeStation devices, demonstrated during the recent Pwn2Own competition. The bug, identified as CVE-2025-12686, falls under the category of "buffer copying without input...
Connecting to public Wi-Fi? Even HTTPS isn’t safe! Let’s find out with this tutorial.
RedWave Team - November 11th, 2025
Many people believe that accessing only HTTPS sites is enough to ensure security when browsing on unsecured Wi-Fi networks. Spoiler alert: this belief is also a false sense of security....
Myths and DNS Spoofing: If I Don’t Make Payments or Log In Online, Am I Really Safe?
RedWave Team - November 11th, 2025
It's often thought that avoiding online dangers is as simple as not making payments or entering credentials while browsing. This approach, while seemingly prudent, is profoundly flawed for several reasons—especially...
Protecting your WiFi by hiding the name? This is a false sense of security
RedWave Team - November 11th, 2025
Security, especially when it comes to WiFi networks, is often the subject of misunderstandings and clichés. In this series of articles in our WiFI column , we aim to debunk...
Open WiFi Networks: A Fertile Ground for Cybercrime
RedWave Team - November 11th, 2025
Nowadays, the proliferation of portable, wearable, and other smart devices has made data exchange, access to resources, and web browsing indispensable. This in-depth look at Wi-Fi focuses on a widely...
Midnight Ransomware: A free decryptor has been released thanks to a bug in the code.
Redazione RHC - November 11th, 2025
Researchers have discovered a vulnerability in the new Midnight ransomware , based on the old Babuk source code. The malware is marketed as an "advanced" version of the malware, but...
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE