Red Hot Cyber. The Cybersecurity Blog

Skynet is coming: the malware that attacks Artificial Intelligence!

Redazione RHC - June 27th, 2025 - (Posted in Cybercrime and Darknet)

An unusual example of malicious code has been discovered in a real computing environment, which for the first time recorded an attempt to attack not classical defense mechanisms, but directly artificial intelligence systems. We are talking about the prompt injection technique, i.e. the introduction of hidden instructions capable of compromising...

Cybercrime and Darknet

The Exploit for the RCE on Palo Alto Firewalls is now Online! And let the Administration be for all

A few hours ago on Breach Forum, a threat actor by the name “newplzqibeme” shared a GitHub repository where a python-written exploit for active exploitation of CVE-2024-0012 on PanOS (the Palo Alto firewall operating system) is published. The exploit grants

Luca Stivali 03/12/2024

Cybercrime and Darknet

RHC DarkLab Interviews Interlock Ransomware. “Don’t waste your energy and time. We will do it for you.”

RHC DarkLab has always taken a unique and provocative approach in the fight against cyber threats, summed up by the motto: ‘One must know the Demons to learn how to counter them.’ This philosophy guides our ongoing commitment to understanding

RHC Dark Lab 02/12/2024

Cybercrime and Darknet

RHC DarkLab Interview Stormous Ransomware. Between history, ideology, techniques and tactics

The Stormous group represents a significant threat in the ransomware landscape: it has an established reputation for its targeted attacks and its overtly pro-Russian ideology. The group may have started operating in mid-2021, later becoming known for its aggressive presence

Redazione RHC 24/11/2024

Cybercrime and Darknet

How Threat Actor make EDR’s harmless with a reboot

I became aware of this technique like 9 months ago, and now I see this on a attack in the wild conducted by Qilin Ransomware Gang, so it’s time to make it public. One of the most important security things

Alex Necula 22/11/2024

Cybercrime and Darknet

The Story Of Conti Ransomware – The War Within (Episode 2)

This is a continuation of the Conti story. You can read the previous part, which covered the group’s origins, in the previous article. We will now explore the internal components of the group and how their own ecosystem began to

Alessio Stefan 22/11/2024

Cybercrime and Darknet

IntelBroker Claims Tesla Charging Database Breach

Recently, the threat actor known as IntelBroker , posted an alleged data breach. The post, which appeared on the BreachForums platform, claims that Tesla’s charging station database has been compromised and made available for download. At this time we cannot confirm the

Redazione RHC 20/11/2024

Red Hot Cyber

Red Hot Cyber. The Cybersecurity Blog

Skynet is coming: the malware that attacks Artificial Intelligence!

The Exploit for the RCE on Palo Alto Firewalls is now Online! And let the Administration be for all

RHC DarkLab Interviews Interlock Ransomware. “Don’t waste your energy and time. We will do it for you.”

RHC DarkLab Interview Stormous Ransomware. Between history, ideology, techniques and tactics

How Threat Actor make EDR’s harmless with a reboot

The Story Of Conti Ransomware – The War Within (Episode 2)

IntelBroker Claims Tesla Charging Database Breach

Why Europe’s healthcare sector must build resilience to fight the threat of ransomware

The Evil Purr – DarkLab Interview to HellCat Ransomware!

VanHelsing RaaS: An Expanding Ransomware-as-a-Service Model

NIST selects second PQC Key Encapsulation algorithm