Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Latest news

WordPress: Five Plugins Found with Malicious Code Cybercrime

WordPress: Five Plugins Found with Malicious Code

On June 24, 2024, Wordfence revealed a supply chain attack on WordPress plugins, leading to the compromise of five plugins...
Pietro Melillo - June 25, 2024
Julian Assange Free! Freedom Reclaimed After Five Years of Detention Cyberpolitics

Julian Assange Free! Freedom Reclaimed After Five Years of Detention

London, June 25, 2024 - Julian Assange, the founder of WikiLeaks, was released yesterday from the maximum-security Belmarsh prison after...
Pietro Melillo - June 25, 2024
BlackByte: The Return of the Gang after a few months of inactivity Cybercrime

BlackByte: The Return of the Gang after a few months of inactivity

In recent years, the cybersecurity landscape has been marked by ongoing ransomware attacks , with criminal groups constantly evolving to evade defenses....
Pietro Melillo - June 24, 2024
Lockbit 3.0 Claims Attack on Federal Reserve: 33 Terabytes of Sensitive Data Allegedly Compromised Cybercrime

Lockbit 3.0 Claims Attack on Federal Reserve: 33 Terabytes of Sensitive Data Allegedly Compromised

In a significant escalation within the cybersecurity realm, the notorious ransomware group Lockbit 3.0 has claimed responsibility for a cyberattack...
Pietro Melillo - June 24, 2024
Anubi, the EDR for your malware and network security Cybercrime

Anubi, the EDR for your malware and network security

In the current modern context where a cyber war is in progress, the concept of cybersecurity awareness and perimeter fortification...
Andrea Cavallini - June 17, 2024
PRAISE TO VX-UNDERGROUND – The hack-library turns 5! Cybercrime

PRAISE TO VX-UNDERGROUND – The hack-library turns 5!

Every nerd or technology enthusiasts cannot deny the influence of the 1980s on modern computer science. Commodore Amiga, Nintendo, Apple...
Alessio Stefan - May 19, 2024
RHC interviews Professor Andrea Morello from the ARC Centre of Excellence for Quantum Computation at the University of New South Wales in Australia Hacking

RHC interviews Professor Andrea Morello from the ARC Centre of Excellence for Quantum Computation at the University of New South Wales in Australia

Original Author: Roberto Campagnola, 30 June 2023, Translator: Tara Lie, 14 May 2024 Red Hot Cyber’s Quantum Computing group has...
Tara Lie - May 14, 2024
ClamAV and signatures generation Cybercrime

ClamAV and signatures generation

Threat intelligence has many fields of application, starting from control of infrastructures using automation processes to security increasing the perimeter...
Andrea Cavallini - May 2, 2024
Loki, starting IOC discovering Cybercrime

Loki, starting IOC discovering

Today is always more important and significant to be efficient in controlling our own infrastructures; actions to put in place...
Andrea Cavallini - May 2, 2024
Flipping pages, from userland to godmode Cybercrime

Flipping pages, from userland to godmode

Traslate: Antonio Piovesan On X, Lau (@notselwyn) (https://twitter.com/notselwyn/) released a blogpost on 26 March at https://pwning.tech/nftables/ describing an elaborate attack...
Sergio Corpettini - April 6, 2024
Likely Iranian-Origin Phishing Attack: New Threat to Online Security in Italy! Cybercrime

Likely Iranian-Origin Phishing Attack: New Threat to Online Security in Italy!

In the vast landscape of computing, increasingly insidious threats emerge that jeopardize the online security of both companies and ordinary...
Davide Cavallini - April 4, 2024
Discovering the Traffic Light Protocol (TLP). How to exchange sensitive information Cybercrime

Discovering the Traffic Light Protocol (TLP). How to exchange sensitive information

Author: Massimiliano Brolli - March, 5th 2024 07:23English translation: Antonio Piovesan - March, 11th 2024 How can we ensure that...
Massimiliano Brolli - March 25, 2024

Threat Actors Steal 5.90 GB of Sensitive Data from the Fiscalía General del Estado de Veracruz!

In an era where cybersecurity has become crucial for protecting sensitive data, a recent leak has revealed an alleged security breach at the Fiscalía General del Estado de Veracruz. A...

Dangerous 0day Windows LPE Vulnerability for Sale in the Underground

A malicious actor, under the name "tikila", has posted an advertisement on a hacking forum for the sale of a local privilege escalation (LPE) vulnerability for Windows. According to the...

Europol Breached: Secret Documents for Sale on the Dark Web

July 6, 2024: A well-known user of the BreachForums, IntelBroker, has recently announced the sale of a collection of crypto-related documents stolen from Europol's EPE platform. The data breach, which...

The New RockYou2024 Collection has been published! 10 Billion Credentials Compromised

Everyone involved with CTF has used the infamous rockyou.txt wordlist at least once, mainly to perform password cracking activities. The file is a list of 14 million unique passwords originating from the 2009...

Taylor Swift’s Tour at Risk: Hacker Demands $2 Million from Ticketmaster for 170k Stolen Barcodes

A cyber incident has hit Ticketmaster, with a malicious actor issuing a ransom demand, threatening to release sensitive data unless a payment of $2 million USD is made. The hacker...

Critical Apache Tomcat Vulnerability CVE-2024-34750 Could Bring Your Server to a Halt!

The vulnerability CVE-2024-34750 in Apache Tomcat, as described in the security bulletin AL01/240705/CSIRT-ITA, concerns an issue that can be exploited to overload the server's computing resources, leading to a Denial...

Threat Actors: Alleged Data Breach of Ukraine Traffic Police

Recently, a threat actor in an underground forum published an alleged data breach. The leak purportedly involves sensitive information from the Ukraine traffic police (GAI). The data, spanning millions of...

Serious Vulnerability in Windows Systems: Here’s How an Attacker Can Gain Complete Control of Your PC

A severe security vulnerability has been discovered in MSI Center, a widely used software on Windows systems. This flaw, classified as CVE-2024-37726 and with a CVSS score of 7.8 (high), allows a low-privileged attacker...

Medusa Ransomware claims responsibility for the attack on Harry Perkins Institute

On July 3, 2024, the Australian research institute Harry Perkins was the victim of a ransomware attack claimed by MEDUSA on their official DLS. More than 4.6 Terabytes of CCTV...

A new potential data breach has exposed sensitive information of 70,000 users of the French amusement park Bol D’Air on BreachForum

Fresh Data Breach Exposes Sensitive Information of French Amusement Park Bol D'Air on BreachForum. Currently, we are unable to accurately confirm the veracity of the breach, as no press release...

Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE