Red Hot Cyber. The Cybersecurity Blog
Featured Articles
A new version, 8.8.9, of the popular text editor Notepad++, has been released by its developers, fixing a flaw in the automatic update system . This issue came to light after some users and investigat...
A recent study by SentinelLabs sheds new light on the roots of the hacker group known as “Salt Typhoon ,” which carried out one of the most audacious espionage operations of the past decade. First...
Shannon acts as a penetration tester who doesn’t just report vulnerabilities, but launches actual exploits. Shannon’s goal is to breach your web application’s security before anyone with malicio...
The scene is always the same: monitors lit, dashboards full of alerts, logs scrolling too quickly, an anxious customer on the other end of the call. You sit down, look around, and realize that, once a...
A well-known initial access broker (IAB) called ” Storm-0249 ” has changed its operational strategies, using phishing campaigns as well as highly targeted attacks, which exploit the very security ...
Embracing Vulnerability for Authentic Leadership and Team Growth
CISA Warns: Avoid Personal VPNs for Secure Mobile Communications
SAP Security Update Fixes Critical Code Injection Vulnerability in Solution Manager
Passwordless Authentication: The Future of Secure Online Access
Critical PromptPwnd Vulnerability Exposes AI-Powered GitLab, GitHub Pipelines
LLM-Powered Malware: The Future of Autonomous Cyber Threats
Embracing Vulnerability for Authentic Leadership and Team Growth
Daniela Linda - December 8th, 2025
We're connected, connected to everything, hyperconnected. Our professional and social lives are dictated by extremely tight deadlines and a constantly rising bar; we must push. We tacitly demand that we...
CISA Warns: Avoid Personal VPNs for Secure Mobile Communications
Redazione RHC - December 8th, 2025
In new mobile communications advisories, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a stern warning to smartphone owners : avoid using personal VPN services. The document, aimed...
SAP Security Update Fixes Critical Code Injection Vulnerability in Solution Manager
Redazione RHC - December 8th, 2025
SAP has just released its latest annual security update, which contains 14 new security bug fixes. Among them is a A critical “code injection” flaw in SAP Solution Manager poses...
Passwordless Authentication: The Future of Secure Online Access
Redazione RHC - December 8th, 2025
Using passwords to access online accounts is no longer as secure as it once was. In fact, passwords are now one of the most common vulnerabilities used by cybercriminals to...
Critical PromptPwnd Vulnerability Exposes AI-Powered GitLab, GitHub Pipelines
Redazione RHC - December 8th, 2025
A critical vulnerability, identified as "PromptPwnd," affects AI agents that are integrated into the GitLab CI/CD and GitHub Actions pipelines. Through this vulnerability, attackers are able to inject malicious commands...
LLM-Powered Malware: The Future of Autonomous Cyber Threats
Redazione RHC - December 8th, 2025
Researchers at Netskope Threat Labs have just published a new analysis on the possibility of creating autonomous malware built exclusively from Large Language Models (LLMs), eliminating the need to encode...
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE