Red Hot Cyber. The Cybersecurity Blog
Microsoft Patch Tuesday: 175 vulnerabilities fixed and two zero-days exploited
In its latest update, the tech giant fixed 175 vulnerabilities affecting its core products and underlying systems, including two actively exploited zero-day vulnerabilities , the company said in its l...
12 security bugs discovered in Ivanti Endpoint Manager (EPM). Update now!
Ivanti has published 13 vulnerabilities in its Endpoint Manager (EPM) software , including two high-severity flaws that could allow remote code execution and privilege escalation . Despite the lack of...
WhatsApp Web in the crosshairs! How the worm that distributes the banking Trojan works
Sophos analysts have discovered a complex malware operation by security experts that uses the popular messaging service WhatsApp to spread banking Trojans, targeting Brazilian banks and cryptocurrency...
RMPocalypse: A critical bug in AMD SEV-SNP threatens cloud security.
A critical vulnerability has been identified in the AMD SEV-SNP hardware security architecture, impacting major cloud providers (AWS, Microsoft Azure, and Google Cloud) . This flaw allows malicious hy...
Spyware yes, spyware no: it’s just a prospect! NSO Group is now under US control.
Israeli company NSO Group, developer of the infamous Pegasus spyware , recently came under the control of American investors. A company spokesperson announced that the new funding amounts to tens of m...
DAS: The world’s ear hidden in submarine cables
Over 1.2 million kilometers of fiber optic cables lie on the ocean floor, long considered solely part of a global telecommunications network. However, distributed acoustic sensing (DAS) technology , r...
Between AI and fear, Skynet teaches: “We’ll build bunkers before launching AGI.”
The quote, “We’ll definitely build a bunker before we launch AGI,” that inspired the article, was attributed to a Silicon Valley leader, though it’s unclear who exactly he meant by “we.” The phrase pe...
RDP Services Exposed in the Crosshairs! A Botnet of 100,000 IPs Scans the Network
In the United States, a large-scale, coordinated botnet campaign is targeting Remote Desktop Protocol (RDP)-based services. The scale and organizational structure of this campaign poses a significant ...
Everyone’s Hacking iPhones! Apple Increases iOS Reward to $5 Million
Apple has significantly expanded its bounty program for security vulnerabilities in the iOS ecosystem. At the Hexacon offensive security conference in Paris, Ivan Krstic, the company’s vice pres...
40,000 iPhones stolen and shipped to Asia: London police arrest international gang
London police announced that Operation Echosteep has uncovered and dismantled a gang responsible for mass iPhone thefts. Investigators estimate the group is responsible for 40% of all phone thefts in ...
Featured Articles

In its latest update, the tech giant fixed 175 vulnerabilities affecting its core products and underlying systems, including two actively exploited zero-day vulnerabilities , the company said in its l...

Ivanti has published 13 vulnerabilities in its Endpoint Manager (EPM) software , including two high-severity flaws that could allow remote code execution and privilege escalation . Despite the lack of...

Sophos analysts have discovered a complex malware operation by security experts that uses the popular messaging service WhatsApp to spread banking Trojans, targeting Brazilian banks and cryptocurrency...

A critical vulnerability has been identified in the AMD SEV-SNP hardware security architecture, impacting major cloud providers (AWS, Microsoft Azure, and Google Cloud) . This flaw allows malicious hy...

Israeli company NSO Group, developer of the infamous Pegasus spyware , recently came under the control of American investors. A company spokesperson announced that the new funding amounts to tens of m...
Mathematics Meets Programming: A transformation journey
Scam Alert: How I Almost Fell for a Million-Dollar
The First Message Sent in the History of the Internet
HijackLoader Expands Techniques to Improve Defense Evasion
The Deception of the Wallet: A Journey into the World of Scammers
Ghost Exodus: the story of a hacker in a documentary that has a lot to teach

Mathematics Meets Programming: A transformation journey
Davide Cavallini - March 11th, 2024
Discover the Magic of Programming Through the Charm of Mathematics: A Journey of Growth and Learning Good morning everyone, I’m Davide Cavallini, Senior Programmer and Penetration Tester This article was written...

Scam Alert: How I Almost Fell for a Million-Dollar
Antonio Piovesan - March 9th, 2024
My name is Elena and I am a 35-year-old housewife. One day, while I was checking my email, I found a mail that caught my attention. The sender introduced himself...

The First Message Sent in the History of the Internet
Tara Lie - February 22nd, 2024
Original Publication Date: Massimiliano Brolli, 25 September 2021 Today, exchanging a message through WhatsApp or Skype is a normal gesture, part of the activities we carry out in our daily...

HijackLoader Expands Techniques to Improve Defense Evasion
Redazione RHC - February 22nd, 2024
Donato Onofri e Emanuele Calvelli Endpoint Security & XDR CrowdStrike. HijackLoader continues to become increasingly popular among adversaries for deploying additional payloads and tooling A recent HijackLoader variant employs sophisticated techniques to...

The Deception of the Wallet: A Journey into the World of Scammers
Antonio Piovesan - February 16th, 2024
Giorgio sat in the self-help circle, the dim candlelight dancing on the walls. The eyes of the other participants were fixed on him, waiting for him to speak. It was...

Ghost Exodus: the story of a hacker in a documentary that has a lot to teach
Olivia Terragni - November 29th, 2023
Ghost Exodus through the exclusive documentary “How Hacking Ruined My Life: Ghost Exodus Story” produced by Silva Rindzevi and visible on the CyberNews Youtube channel, broke the silence to tell...
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE