Red Hot Cyber. The Cybersecurity Blog
Featured Articles

A new version, 8.8.9, of the popular text editor Notepad++, has been released by its developers, fixing a flaw in the automatic update system . This issue came to light after some users and investigat...

A recent study by SentinelLabs sheds new light on the roots of the hacker group known as “Salt Typhoon ,” which carried out one of the most audacious espionage operations of the past decade. First...

Shannon acts as a penetration tester who doesn’t just report vulnerabilities, but launches actual exploits. Shannon’s goal is to breach your web application’s security before anyone with malicio...

The scene is always the same: monitors lit, dashboards full of alerts, logs scrolling too quickly, an anxious customer on the other end of the call. You sit down, look around, and realize that, once a...

A well-known initial access broker (IAB) called ” Storm-0249 ” has changed its operational strategies, using phishing campaigns as well as highly targeted attacks, which exploit the very security ...
BazarLoader: The precursor malware used by RaaS gangs
Emotet: The horse returns to a gallop more dangerous than ever
Two 0-day attacks, one attack: the perfect strike against Citrix and Cisco. Amazon’s discovery
The Queen of Cryptocurrency Has Been Captured! She Stole $7 Billion in Bitcoin
Cyber Sabotage Alert: Volt Typhoon Prepares for Destructive Activities
Microsoft fixes 63 vulnerabilities, including an actively exploited zero-day

BazarLoader: The precursor malware used by RaaS gangs
Redazione RHC - November 12th, 2025
BazarLoader (sometimes referred to as BazaLoader ) is a " precursor malware " that provides initial backdoor access to an infected Windows host. Once a client is infected, criminals use...

Emotet: The horse returns to a gallop more dangerous than ever
Redazione RHC - November 12th, 2025
Emotet is a malware of the Trojan Horse category, which began its first spread in 2014 which brought it to the podium among the main cyber threats of the decade...

Two 0-day attacks, one attack: the perfect strike against Citrix and Cisco. Amazon’s discovery
Redazione RHC - November 12th, 2025
Amazon ha segnalato un complesso attacco informatico in cui gli aggressori hanno sfruttato simultaneamente due vulnerabilità zero-day, presenti nei prodotti Citrix e Cisco. Secondo il responsabile della sicurezza informatica dell'azienda,...

The Queen of Cryptocurrency Has Been Captured! She Stole $7 Billion in Bitcoin
Redazione RHC - November 12th, 2025
A London court has sentenced 47-year-old Chinese woman Zhimin Qian , also known as Yadi Zhang, to 11 years and eight months in prison for laundering bitcoin obtained through the...

Cyber Sabotage Alert: Volt Typhoon Prepares for Destructive Activities
Redazione RHC - November 12th, 2025
The Australian Security Intelligence Organisation (ASIO) has raised the alarm about the readiness of authoritarian states to go beyond cyber espionage to directly sabotage critical infrastructure. Mike Burgess, head of...

Microsoft fixes 63 vulnerabilities, including an actively exploited zero-day
Redazione RHC - November 12th, 2025
On November's Patch Tuesday, Microsoft fixed 63 vulnerabilities , including a critical zero-day vulnerability that had already been exploited in attacks. This time, the fixes affected a wide range of...
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

