Red Hot Cyber. The Cybersecurity Blog
Featured Articles
The world of technology is a veritable battlefield, where coding geniuses challenge malicious attackers every day with exploits and security patches. That’s why the recent discovery of a vulnerabili...
Cybersecurity is a serious issue, especially when it comes to vulnerabilities that can compromise an entire system. Well, Hewlett Packard Enterprise (HPE) has just raised the alarm about a truly worry...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert including three new vulnerabilities in its catalog of exploited cyber threats (KEVs), highlighting that these fl...
The psychology of passwords starts right here: trying to understand people before systems. Welcome to “The Mind Behind Passwords,” the column that looks at cybersecurity. From a different perspect...
New details emerge from an Amazon Threat Intelligence report that highlight an alarming shift in Russian government-backed cyber operations. High-level 0-day exploits, often attributed to state-sponso...
Apache Tomcat Vulnerability: Update Now to Avoid Security Risks
Paycheck piracy is coming! And the paycheck transfer goes to criminals.
CrowdStrike: 76% of organizations struggle to combat AI attacks
Whisper 2FA: The New Phishing Tool That Steals Microsoft 365 Credentials
Microsoft Teams will spy on your boss when you’re out of the office! Location tracking will be rolled out in December.
China promotes global AI governance under the United Nations
Apache Tomcat Vulnerability: Update Now to Avoid Security Risks
Redazione RHC - October 27th, 2025
Many web applications rely on Apache Tomcat, a widely used open-source Java servlet container. On October 27, 2025, Apache disclosed two vulnerabilities: CVE-2025-55752 and CVE-2025-55754, affecting several versions of Tomcat....
Paycheck piracy is coming! And the paycheck transfer goes to criminals.
Redazione RHC - October 27th, 2025
According to a new report from Microsoft Threat Intelligence , the financially motivated Storm-2657 group is conducting large-scale attacks against universities and businesses , using stolen employee accounts to redirect...
CrowdStrike: 76% of organizations struggle to combat AI attacks
Redazione RHC - October 27th, 2025
Enterprises are lagging behind in ransomware preparedness as adversaries use AI across the attack chain to accelerate intrusion, encryption and extortion. Milan – October 27, 2025 – According to CrowdStrike...
Whisper 2FA: The New Phishing Tool That Steals Microsoft 365 Credentials
Redazione RHC - October 26th, 2025
According to new research from Barracuda Networks , a particularly insidious and persistent new Phishing-as-a-Service (PhaaS) kit is stealing credentials and authentication tokens from Microsoft 365 users. Barracuda experts have...
Microsoft Teams will spy on your boss when you’re out of the office! Location tracking will be rolled out in December.
Redazione RHC - October 26th, 2025
Microsoft Teams will receive an update in December 2025 that will allow you to track employee locations over your office Wi-Fi network. According to the Microsoft 365 roadmap , "when...
China promotes global AI governance under the United Nations
Redazione RHC - October 26th, 2025
On October 27, the Blue Hall Forum on the theme of "Improving Global Governance and Building a Community with a Shared Future for Humanity" was held at the Ministry of...
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE