Red Hot Cyber. The Cybersecurity Blog
Palo Alto Networks Also Compromised via Salesforce and Drift
In early September 2025, Palo Alto Networks confirmed it had been the victim of a data breach. The compromise did not affect its core products or services, but rather some internally used Salesforce i...
Was there terror on Ursula von der Leyen’s flight? Let’s clear things up!
On August 31, 2025, flight AAB53G, operated by a Dassault Falcon 900LX registered OO-GPE and carrying European Commission President Ursula von der Leyen, took off from Warsaw and landed safely at Plov...
Zscaler Data Breach: Lessons Learned About the Evolution of SaaS Threats
Zscaler’s recent confirmation of a data breach resulting from a supply chain attack provides a case study in the evolution of threats against complex SaaS ecosystems. The attack, attributed to the APT...
Critical Linux Vulnerability: CVSS 8.5 Vulnerability Discovered in UDisks Daemon
A critical security flaw in the Linux UDisks daemon was recently discovered, allowing potential unprivileged attackers to access files belonging to highly privileged users. The vulnerability, classifi...
Let the hunt begin! Hackers exploit Citrix flaw to infiltrate global systems
A critical zero-day flaw, classified as CVE-2025-6543, has been discovered in Citrix NetScaler systems. This vulnerability has been actively exploited by malicious hackers since May 2025, several mont...
Phishing on Teams: at least the hacker responds faster than the real help desk!
In recent months, as previously reported on Red Hot Cyber, a new front has emerged in the corporate phishing landscape: Microsoft Teams attacks in which attackers impersonate IT or help desk personnel...
Critical vulnerabilities in NetScaler ADC and Gateway. Update now! Attacks are ongoing!
NetScaler has alerted administrators of three new vulnerabilities in NetScaler ADC and NetScaler Gateway, one of which is already being used in active attacks. Updates are available and the vendor urg...
Storm-0501: When Ransomware Moves to the Cloud
Microsoft is raising the alarm: the Storm-0501 cybercriminal group has evolved. No more “traditional” attacks on on-premise machines, no more ransomware that encrypts local files. Now the threat is mo...
Microsoft Teams crashes: Embedded Office documents blocked from opening
A Black Thursday for millions of Microsoft Teams users around the world. A key feature of the collaboration platform – opening embedded Office documents – has suddenly been knocked out, sparking frust...
Happy birthday Windows 95: the system that changed PCs forever!
August 24, 2025, marked the 30th anniversary of the launch of Windows 95, Microsoft’s first mass-market 32-bit consumer operating system, which significantly revolutionized the world of personal compu...
Featured Articles

In early September 2025, Palo Alto Networks confirmed it had been the victim of a data breach. The compromise did not affect its core products or services, but rather some internally used Salesforce i...

On August 31, 2025, flight AAB53G, operated by a Dassault Falcon 900LX registered OO-GPE and carrying European Commission President Ursula von der Leyen, took off from Warsaw and landed safely at Plov...

Zscaler’s recent confirmation of a data breach resulting from a supply chain attack provides a case study in the evolution of threats against complex SaaS ecosystems. The attack, attributed to the A...

A critical security flaw in the Linux UDisks daemon was recently discovered, allowing potential unprivileged attackers to access files belonging to highly privileged users. The vulnerability, classifi...

A critical zero-day flaw, classified as CVE-2025-6543, has been discovered in Citrix NetScaler systems. This vulnerability has been actively exploited by malicious hackers since May 2025, several mont...
GitHub and GitLab are increasingly under fire! Targeted attacks targeting developers via fake repositories
Meta’s AI bots use avatars of minors and celebrities: a storm erupts.
Sindoor Dropper: The Malware Using the India-Pakistan Clash to Infect Linux
Iranian cyber attacks disrupt Gaza ceasefire negotiations
Let the hunt begin! Hackers exploit Citrix flaw to infiltrate global systems
The Pentagon launches an audit of Microsoft. It investigates Chinese engineers and alleged backdoors.

Transparency and Resilience: NIST Publishes Meta-Framework to Change Supply Chain Management
Redazione RHC - September 1st, 2025
The National Institute of Standards and Technology (NIST), through its National Cybersecurity Center of Excellence (NCCoE), has introduced a decentralized data approach to help manufacturers and critical infrastructure sectors protect...

LilyGO T-Embed CC1101 and Bruce Firmware, the community makes studying Rolling Code possible
Diego Bentivoglio - September 1st, 2025
Research into radio frequency security never stops. In recent years, we've seen the emergence of increasingly accessible tools that have brought the world of RF hacking beyond academic laboratories. One...

New AI-powered stethoscope now delivers cardiac diagnoses in 15 seconds
Redazione RHC - September 1st, 2025
British doctors have tested an advanced stethoscope equipped with artificial intelligence capable of detecting three serious heart conditions in just 15 seconds. Practical results of the study showed that the...

WhatsApp wins $167 million lawsuit against NSO and its Pegasus spyware
Redazione RHC - September 1st, 2025
A major legal breakthrough is upon us. A US court has ordered NSO Group, a notorious spyware maker, to pay $167 million to WhatsApp. This ruling stems from a 2019...
Sign up for the newsletter