Red Hot Cyber. The Cybersecurity Blog
OpenAI and Microsoft reach agreement to transform into a public utility company.
OpenAI has entered into a memorandum of understanding with Microsoft to review its partnership, which could lead to the company’s transformation into a Public Benefit Corporation (PBC). If the transfo...
Goodbye PowerShell 2.0 and WMIC! The great Windows 11 cleanup has begun.
Windows 11 users who have installed the September 2025 Update might think that practically nothing changes. At first glance, KB5065426 looks like a normal small patch that Microsoft distributes to eve...
Looking for Volodymyr Tymoshchuk! 11 million dollars for the Nefilim hacker
The U.S. Department of Justice has indicted Ukrainian Volodymyr Tymoshchuk on seven counts of computer hacking and extortion. He is considered one of the most dangerous hackers of recent years. The in...
In Nepal, people are dying for social media! 19 people lost their lives trying to get Facebook back
In a dramatic reversal, Nepal has lifted the nationwide social media blackout imposed last week after it sparked massive youth protests and caused at least 19 deaths, according to local media. The dec...
Xi Jinping and the Chinese APT’s Ambition
The post-COVID macro political movements, including ongoing conflicts, have prompted a majority of states to shift their medium- to long-term political objectives. Clearly, a paradigm shift has been v...
Salesloft Cyber Attack: Chatbot Drift Temporarily Disabled
Salesloft announced that it would temporarily deactivate its AI-powered chatbot Drift on September 5, after several companies were hit by a massive supply chain attack. The incident resulted in the ma...
Discover the Dark Web: Access, Secrets, and Helpful Links to the Onion Network
The Dark Web is a part of the internet that cannot be reached with standard browsers (Chrome, Firefox, Edge). To access it, you need to use specific tools like the Tor Browser, which guarantees anonym...
AI A2 detected 102 0-day bugs and created exploits in Android apps for $1.77
Artificial intelligence systems have been criticized for creating confusing vulnerability reports and inundating open-source developers with irrelevant complaints. But researchers at Nanjing Universit...
$16 billion in stolen Apple, Meta, and Google credentials up for sale for $121,000
The Darklab team, Red Hot Cyber‘s community of threat intelligence experts, has identified an ad on the dark web marketplace “Tor Amazon”, the criminal counterpart of the popular e-commerce site on th...
Red Hot Cyber Conference 2026: Sponsorships Open for the Fifth Edition in Rome
The Red Hot Cyber Conference has become a regular event for the Red Hot Cyber community and for anyone working in or interested in the world of digital technologies and cybersecurity. The fifth editio...
Featured Articles

OpenAI has entered into a memorandum of understanding with Microsoft to review its partnership, which could lead to the company’s transformation into a Public Benefit Corporation (PBC). If the trans...

Windows 11 users who have installed the September 2025 Update might think that practically nothing changes. At first glance, KB5065426 looks like a normal small patch that Microsoft distributes to eve...

The U.S. Department of Justice has indicted Ukrainian Volodymyr Tymoshchuk on seven counts of computer hacking and extortion. He is considered one of the most dangerous hackers of recent years. The in...

In a dramatic reversal, Nepal has lifted the nationwide social media blackout imposed last week after it sparked massive youth protests and caused at least 19 deaths, according to local media. The dec...

The post-COVID macro political movements, including ongoing conflicts, have prompted a majority of states to shift their medium- to long-term political objectives. Clearly, a paradigm shift has been v...
Critical authentication bypass bug affects Sophos AP6
An RCE in Apple CarPlay allows root access to vehicle infotainment systems
Volkswagen is investing in artificial intelligence: one billion euros to reduce costs
A bug in Google Drive allows access to other people’s files on shared desktops.
Former WhatsApp employee: “1,500 engineers have access to confidential user data.”
iCloud Calendar Phishing Scam: How It Works and How to Protect Yourself

Critical authentication bypass bug affects Sophos AP6
Redazione RHC - September 11th, 2025
Sophos has announced that it has fixed a critical authentication bypass vulnerability affecting its AP6 series wireless access points. The flaw allowed a remote attacker to gain administrative privileges by...

An RCE in Apple CarPlay allows root access to vehicle infotainment systems
Redazione RHC - September 11th, 2025
At the DefCon security conference, researchers presented a significant exploit chain that allows attackers to gain administrator permissions for vehicle entertainment systems through Apple CarPlay. The attack known as "Pwn...

Volkswagen is investing in artificial intelligence: one billion euros to reduce costs
Redazione RHC - September 11th, 2025
Volkswagen announced on the first day of the IAA Mobility international trade fair in Munich its intention to integrate artificial intelligence into all areas of its business, with the aim...

A bug in Google Drive allows access to other people’s files on shared desktops.
Redazione RHC - September 11th, 2025
Millions of people and businesses rely on Google Drive to store contracts, reports, photos, and work documents, using the Windows desktop client to sync files between local and cloud folders....

Former WhatsApp employee: “1,500 engineers have access to confidential user data.”
Redazione RHC - September 11th, 2025
Attaullah Baig, who reportedly led WhatsApp's security team from 2021 to 2025, has filed a lawsuit against parent company Meta. Baig claims he was fired for repeatedly attempting to fix...

iCloud Calendar Phishing Scam: How It Works and How to Protect Yourself
Redazione RHC - September 11th, 2025
It has been discovered that iCloud Calendar invitations have been used to send phishing emails disguised as purchase notifications directly from Apple's mail servers. This tactic increases the likelihood of...
Sign up for the newsletter