Red Hot Cyber. The Cybersecurity Blog
Featured Articles
The Tor project has announced the introduction of a new encryption scheme, called Counter Galois Onion (CGO) , intended to replace the previous Tor1 Relay method. The update aims to strengthen network...
A group of members of the European Parliament have called for Microsoft to abandon its internal use of products and switch to European solutions. Their initiative stems from growing concerns about the...
Hi everyone… my name is Marco, I’m 37 years old and I work as an administrative clerk in an accounting firm. This is my first time speaking in front of you all, and I’m a little emotional… and...
A nearly forgotten service command has returned to prominence after being spotted in new Windows device infection patterns. For decades considered a relic of the early days of the internet, the mechan...
On the porch of an old cabin in Colorado, Mark Gubrud , 67, gazes absently into the distant dusk, his phone beside him, the screen still on a news app. As we know, tech giants Microsoft and OpenAI ann...
ShadowLeak Arrives: A 0-Click Bug in ChatGPT Leads to Sensitive Data Exfiltration
Generative Artificial Intelligence: Explosive Growth and Security Challenges
GitLab fixes critical vulnerability CVE-2025-6454
Supply Chain Wormable? NPM Packages with Self-Propagating Malware Arrive
The KING of RaidForums remains in limbo. The battle between the US and Portugal over his extradition continues.
Italy under DDoS attack by pro-Russian NoName057(16)? Few disruptions.
ShadowLeak Arrives: A 0-Click Bug in ChatGPT Leads to Sensitive Data Exfiltration
Redazione RHC - September 18th, 2025
A new threat is beginning to emerge in the IT world: the world of artificial intelligence agents. ShadowLeak is a recently discovered clickless indirect prompt injection (IPI) vulnerability that occurs...
Generative Artificial Intelligence: Explosive Growth and Security Challenges
Redazione RHC - September 18th, 2025
By Umberto Pirovano, Senior Manager Technical Solutions at Palo Alto Networks Generative Artificial Intelligence (GenAI) is redefining the technology and business landscape at an astonishing rate. According to Palo Alto...
GitLab fixes critical vulnerability CVE-2025-6454
Redazione RHC - September 17th, 2025
The collaborative development platform GitLab has announced the fix for a critical vulnerability, identified as CVE-2025-6454. The issue affected server installations of the Community and Enterprise editions and allowed requests...
Supply Chain Wormable? NPM Packages with Self-Propagating Malware Arrive
Redazione RHC - September 17th, 2025
Security researchers have discovered the compromise of over 180 npm packages, infected with a self-propagating malware designed to infect other packages. The campaign, dubbed Shai-Hulud, likely began with the hack...
The KING of RaidForums remains in limbo. The battle between the US and Portugal over his extradition continues.
Redazione RHC - September 17th, 2025
The High Court in London has overturned the decision to extradite Portuguese citizen Diogo Santos Coelho to the United States. The young man, known by the pseudonym Omnipotent, was the...
Italy under DDoS attack by pro-Russian NoName057(16)? Few disruptions.
Redazione RHC - September 17th, 2025
The hackers of NoName057(16) have recently resumed their hostile activities against several Italian targets, using Distributed Denial-of-Service (DDoS) attacks. Based on what we observed, Italian infrastructure has strengthened its structure,...
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE