Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Latest news

China: 7.5 Million Tourist Data Stolen! Cybercrime

China: 7.5 Million Tourist Data Stolen!

On the morning of July 6, 2024, a user known as "BlackKing" revealed a significant data breach involving a Chinese...
Pietro Melillo - July 8, 2024
Latvian Government Database Compromised: Over 1.6 Million Government Data Lines! Cybercrime

Latvian Government Database Compromised: Over 1.6 Million Government Data Lines!

A malicious actor has claimed to have leaked a database containing over 1.6 million lines of data from the Latvian...
Pietro Melillo - July 8, 2024
Threat Actors Steal 5.90 GB of Sensitive Data from the Fiscalía General del Estado de Veracruz! Cybercrime

Threat Actors Steal 5.90 GB of Sensitive Data from the Fiscalía General del Estado de Veracruz!

In an era where cybersecurity has become crucial for protecting sensitive data, a recent leak has revealed an alleged security...
Pietro Melillo - July 8, 2024
Dangerous 0day Windows LPE Vulnerability for Sale in the Underground Cybercrime

Dangerous 0day Windows LPE Vulnerability for Sale in the Underground

A malicious actor, under the name "tikila", has posted an advertisement on a hacking forum for the sale of a...
Pietro Melillo - July 7, 2024
Europol Breached: Secret Documents for Sale on the Dark Web Cybercrime

Europol Breached: Secret Documents for Sale on the Dark Web

July 6, 2024: A well-known user of the BreachForums, IntelBroker, has recently announced the sale of a collection of crypto-related...
Pietro Melillo - July 7, 2024
The New RockYou2024 Collection has been published! 10 Billion Credentials Compromised Cybercrime

The New RockYou2024 Collection has been published! 10 Billion Credentials Compromised

Everyone involved with CTF has used the infamous rockyou.txt wordlist at least once, mainly to perform password cracking activities. The file is a...
Alessio Stefan - July 6, 2024
Taylor Swift’s Tour at Risk: Hacker Demands $2 Million from Ticketmaster for 170k Stolen Barcodes Cybercrime

Taylor Swift’s Tour at Risk: Hacker Demands $2 Million from Ticketmaster for 170k Stolen Barcodes

A cyber incident has hit Ticketmaster, with a malicious actor issuing a ransom demand, threatening to release sensitive data unless...
Pietro Melillo - July 5, 2024
Critical Apache Tomcat Vulnerability CVE-2024-34750 Could Bring Your Server to a Halt! Vulnerability

Critical Apache Tomcat Vulnerability CVE-2024-34750 Could Bring Your Server to a Halt!

The vulnerability CVE-2024-34750 in Apache Tomcat, as described in the security bulletin AL01/240705/CSIRT-ITA, concerns an issue that can be exploited...
Raffaela Crisci - July 5, 2024
Threat Actors: Alleged Data Breach of Ukraine Traffic Police Cybercrime

Threat Actors: Alleged Data Breach of Ukraine Traffic Police

Recently, a threat actor in an underground forum published an alleged data breach. The leak purportedly involves sensitive information from...
RHC Dark Lab - July 5, 2024
Serious Vulnerability in Windows Systems: Here’s How an Attacker Can Gain Complete Control of Your PC Vulnerability

Serious Vulnerability in Windows Systems: Here’s How an Attacker Can Gain Complete Control of Your PC

A severe security vulnerability has been discovered in MSI Center, a widely used software on Windows systems. This flaw, classified as CVE-2024-37726 and...
Alessio Stefan - July 5, 2024
Medusa Ransomware claims responsibility for the attack on Harry Perkins Institute Cybercrime

Medusa Ransomware claims responsibility for the attack on Harry Perkins Institute

On July 3, 2024, the Australian research institute Harry Perkins was the victim of a ransomware attack claimed by MEDUSA...
Alessio Stefan - July 5, 2024
A new potential data breach has exposed sensitive information of 70,000 users of the French amusement park Bol D’Air on BreachForum Cybercrime

A new potential data breach has exposed sensitive information of 70,000 users of the French amusement park Bol D’Air on BreachForum

Fresh Data Breach Exposes Sensitive Information of French Amusement Park Bol D'Air on BreachForum. Currently, we are unable to accurately...
Alessio Stefan - July 4, 2024

Cryptography at Risk: MIT develops a Quantum Algorithm to crack RSA.

Modern encryption methods, such as RSA, are based on the fact that even the most powerful classical computers are not able to quickly decompose a large number into prime factors....

Arrest of Pavel Durov: Telegram Founder Detained in Paris

On August 24, 2024, French authorities arrested Pavel Durov, the founder and CEO of Telegram, at Le Bourget Airport. Durov, a 39-year-old Franco-Russian citizen, had just arrived from Azerbaijan on...

IntelBroker Takes Control of BreachForums: A New Chapter in Cybercrime Management

IntelBroker Takes Control of BreachForums: A New Chapter in Cybercrime Management IntroductionThe recent acquisition of BreachForums by IntelBroker marks a significant shift in the landscape of cybercrime. This transition of...

Donald Trump’s campaign under attack! Documents and internal communications exfiltrated

After the European elections unfolded, geopolitical attentions shifted to the U.S. election campaign, one of the most dynamic in recent years recently with the Democrats' recent changeover with Harris as...

NSO Group targeted! BlackMeta attacks Spyware maker’s central domain

The Pro-Palestinian group BlackMeta (or DarkMeta) announced on August 1, 2024, on their official telegram channel that they conducted a destructive attack on the NSO group's infrastructure, including the central...

Echelon Stealer: The Open Source Malware

Echelon Stealer is an infostealer malware that was first discovered in 2018 and is still active. Currently shared as an open-source tool on GitHub, Echelon Stealer offers various advanced features...

Ferrari avoids deepfake scam! An executive unmasks the CEO’s fake audio messages

In an incident earlier this month, a Ferrari executive found himself receiving unusual messages that appeared to come from the company's CEO, Benedetto Vigna. The messages came via WhatsApp, owned...

The Ransomware Group Ransomexx Claims Attack on Liteon

On July 26, 2024, the ransomware group Ransomexx publicly claimed responsibility for an attack against Liteon, a giant in the electronic components sector. This attack is further evidence of the...
Un'immagine suggestiva e malinconica che gioca sul contrasto tra tecnologia e natura. In primo piano, il logo nero di Windows, composto dai classici quattro quadrati leggermente prospettici, appare nitido e opaco al centro dell'inquadratura. Lo sfondo è interamente occupato da un vetro ricoperto da fitte gocce di pioggia di varie dimensioni, che creano una trama disordinata e riflettente. Oltre il vetro s'intravede un paesaggio urbano dai toni cupi e desaturati, con sagome scure di alberi e tetti sotto un cielo grigio e nuvoloso. L'atmosfera generale è fredda, introspettiva e tipica di una giornata autunnale di pioggia.

The dark side of the Windows Command Prompt: how malicious commands can replace legitimate ones

If you choose to read this article, please note that it will not discuss a vulnerability or a bug, but rather an intended behavior of Windows Command Prompt which, in...

RHC interviews RADAR and DISPOSSESSOR: “When it comes to security, the best defense is a good offense.”

In our usual underground analysis activities, we came into contact with the cyber gang DISPOSSESSOR, which came to attention in February 2024 in the cyber threat landscape. Accessing their Data...

Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE