Red Hot Cyber. The Cybersecurity Blog
PoC Released for SQL Injection Without Authentication on WordPress WZone Plugin
A proof of concept (PoC) for a critical vulnerability identified as CVE-2024-33544 has recently been released. This vulnerability involves an unauthenticated SQL injection, which poses a serious threat to the security of many web applications. The National Vulnerability Database (NVD)
Threat Actor IntelBroker Exposes Rapid4Cloud Data on Breach Forums
In the world of cybersecurity, news of data breaches is commonplace. Recently, a new alleged breach has made waves: the moderator of BreachForums, known as IntelBroker, has claimed to have leaked the source codes (SRC) of various Rapid4Cloud products. Details
Play Ransomware Claims Attack on MIPS Technologies
In the last few hours, the Data Leak site of the ransomware gang Play Ransomware has published a new claim: the giant MIPS Technologies (www.mips.com) has been the victim of an attack. Although the official publication is scheduled for July
Data Breach: Personal Information of 6K NATO Employees for Sale
On July 17, 2024, user Vadimblyaa posted on a well-known cybercriminal forum, claiming to possess personal information of 6,000 NATO employees, acquired through a data breach that occurred on July 13, 2024. Vadimblyaa has put this information up for sale
Alleged Cyber Attack on Sheba Medical Center: Israel’s Largest Hospital
The Sheba Medical Center, the largest hospital in Israel and ranked ninth in the world, has recently fallen victim to an alleged data breach. A pro-Palestinian hacker group known as Handala has claimed responsibility for the attack, stating that they
RHC DarkLab Interview Stormous Ransomware. Between history, ideology, techniques and tactics
Redazione RHC - November 24th, 2024
The Stormous group represents a significant threat in the ransomware landscape: it has an established reputation for its targeted attacks and its overtly pro-Russian ideology. The group may have started...
How Threat Actor make EDR’s harmless with a reboot
Alex Necula - November 22nd, 2024
I became aware of this technique like 9 months ago, and now I see this on a attack in the wild conducted by Qilin Ransomware Gang, so it’s time to...
The Story Of Conti Ransomware – The War Within (Episode 2)
Alessio Stefan - November 22nd, 2024
This is a continuation of the Conti story. You can read the previous part, which covered the group's origins, in the previous article. We will now explore the internal components...
IntelBroker Claims Tesla Charging Database Breach
Redazione RHC - November 20th, 2024
Recently, the threat actor known as IntelBroker , posted an alleged data breach. The post, which appeared on the BreachForums platform, claims that Tesla’s charging station database has been compromised and made...
Sign up for the newsletter