Contact
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.
Home
Linux 7.0 says goodbye to the HIPPI relic: a piece of supercomputing history has been eliminated.-The Grok scandal: 3 million sexually explicit images generated in 11 days-“I Stole 120,000 Bitcoins”: The Confession of the Bitfinex Hacker Who Now Wants to Defend Cyberspace-AGI: Google and Anthropic CEOs sound the alarm at Davos – the world won’t be ready!-A working browser built with AI using 3 million lines of code: breakthrough or illusion?-Linux 7.0 says goodbye to the HIPPI relic: a piece of supercomputing history has been eliminated.-The Grok scandal: 3 million sexually explicit images generated in 11 days-“I Stole 120,000 Bitcoins”: The Confession of the Bitfinex Hacker Who Now Wants to Defend Cyberspace-AGI: Google and Anthropic CEOs sound the alarm at Davos – the world won’t be ready!-A working browser built with AI using 3 million lines of code: breakthrough or illusion?
Redhotcyber Banner Sito 320x100px Uscita 101125
HackTheBox 970x120 1

Author: Agostino Pellegrino

Agostino Pellegrino

He is a freelancer, teacher and expert in Computer Forensics, Cyber Security and Ethical Hacking and Network Management. He has collaborated with leading educational institutions internationally and has practiced teaching and mentorship in advanced Offensive Security techniques for NATO obtaining major awards from the U.S. Government. His motto is "Study. Always."

Profilo LinkedIn
Areas of Expertise Incident Response, Malware Analysis, Penetration Testing, Red Teaming

Vulnerability in 7-Zip: Attackers can perform denial-of-service attacks

- July 21st, 2025

A critical security flaw related to memory corruption has been discovered in the popular 7-Zip archiver. This vulnerability can be exploited by attackers to cause denial-of-service conditions by creating malicious...
Share on Facebook Share on LinkedIn Share on X

ToolShell: The New Threat Affecting Microsoft SharePoint Servers

- July 21st, 2025

An advanced cyberattack campaign has been detected targeting Microsoft SharePoint servers. This threat exploits a series of vulnerabilities, known as "ToolShell," which allows attackers to gain complete and remote control...
Share on Facebook Share on LinkedIn Share on X

Millions of vehicles at risk of RCE attacks via the PerfektBlue Bluetooth bug

- July 20th, 2025

Four vulnerabilities, dubbed PerfektBlue, affect OpenSynergy's Bluetooth BlueSDK stack. The vulnerabilities allow remote execution of arbitrary code and could contribute to accessing critical components in vehicles from manufacturers such as...
Share on Facebook Share on LinkedIn Share on X

Three score 10 bugs have been detected in Cisco ISE and ISE-PIC: urgent updates required.

- July 18th, 2025

Several vulnerabilities have been identified in the Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) products that could allow a remote attacker to execute arbitrary commands...
Share on Facebook Share on LinkedIn Share on X

The new version of the Konfety malware uses advanced evasion techniques

- July 17th, 2025

A new version of the Android malware called Konfety has become even more sophisticated: specialists at Zimperium zLabs have discovered an improved variant that uses non-standard ZIP archives and loads...
Share on Facebook Share on LinkedIn Share on X

RenderShock: The new digital threat that attacks Windows systems with a mouse click

- July 15th, 2025

A new form of digital attack called RenderShock has hit corporate Windows systems. It doesn't require any clicks or opening attachments: everything happens completely in the background, via trusted preview...
Share on Facebook Share on LinkedIn Share on X

Tasting the Exploit: HackerHood testa l’exploit su Wing FTP Server del CVE‑2025‑47812 da Score 10

- July 15th, 2025

This tool is intended solely for authorized educational and penetration testing purposes. The author assumes no responsibility for any misuse or damage caused by this software. Always ensure you have...
Share on Facebook Share on LinkedIn Share on X

Gravity Forms Under Attack: WordPress Plugin Infected with a Backdoor

- July 15th, 2025

The popular WordPress Gravity Forms plugin has suffered a supply chain attack, infecting its official website with a backdoor. Gravity Forms is a premium plugin for creating contact forms, payment...
Share on Facebook Share on LinkedIn Share on X

Russian domestic hackers Cozy Bear (APT29). Analysis of the main attacks and their TTPs.

- July 13th, 2025

Author: Gianluca Tiepolo APT29 is a highly sophisticated Advanced Persistent Threat (APT) group that has been attributed to Russia's Foreign Intelligence Service (SVR). The group has been active since at...
Share on Facebook Share on LinkedIn Share on X

A RCE vulnerability in Wing FTP Server rated 10 opens the door to 10,000 companies.

- July 12th, 2025

Huntress researchers have detected active exploitation of a critical vulnerability in Wing FTP Server, just one day after its public disclosure. The vulnerability CVE-2025-47812 has been assigned the highest severity...
Share on Facebook Share on LinkedIn Share on X
Category