Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Search
Crowdstrike 320×100
970x120

Category: Cybercrime and Darknet

Apache SkyWalking Vulnerability Exposes Users to XSS Attacks

Redazione RHC 29/11/2025

A vulnerability was recently discovered in Apache SkyWalking , a popular application performance monitoring tool, that attackers could exploit to execute malicious scripts and launch cross-site scripting (XSS) attacks . The vulnerability, identified as CVE-2025-54057 , affects all versions of SkyWalking, up to version 10.2.0. This vulnerability falls under the category of ” stored cross-site scripting (XSS) .” This means that an attacker can inject malicious code into a web page, and when other users view that web page, the code will be executed in their browsers. This could lead to a variety of security issues, including the theft of login credentials

Bloody Wolf Attacks Central Asia with NetSupport RAT via Java Exploits

Redazione RHC 29/11/2025

Group-IB specialists have recorded new attacks by the Bloody Wolf hacker group, which has been targeting Kyrgyzstan since June 2025 and has expanded its operations to Uzbekistan since October. The financial sector, government agencies, and IT companies are at risk. According to researchers, the attackers are impersonating the Kyrgyz Ministry of Justice, using fake PDF documents and seemingly legitimate domains, but are actually distributing Java archives (JARs) containing the NetSupport RAT malware. Bloody Wolf has been active since at least the end of 2023. Previously, the group targeted Kazakhstan and Russia, distributing STRRAT and NetSupport via phishing attacks. The group’s geographic reach

WhatsApp Blocked in Russia: Messaging App Faces Crackdown

Redazione RHC 28/11/2025

The Russian Federation’s Roskomnadzor has announced that it continues to impose systematic restrictions on the messaging app WhatsApp due to violations of Russian law. According to the agency, the service is being used to organize and carry out terrorist attacks in Russia, recruit terrorists, and commit fraud and other crimes against citizens. The report states that WhatsApp fails to comply with requirements aimed at preventing and combating crime in Russia. The regulator emphasized that, under such circumstances, restrictions on the messaging service will be extended, and if it continues to violate Russian law, the service could be completely blocked in the country.

CEO Scam: How to Protect Your Company from Business Email Compromise

Redazione RHC 28/11/2025

This morning, Paragon Sec was contacted by an Italian company that had been the victim of a new fraud attempt known as the CEO Scam . The accounting department received an urgent email, apparently from their CEO, requesting immediate payment of a €4,000 invoice. The message, accompanied by a seemingly authentic invoice, indicated the need for an immediate transfer. The employee in charge of payments, believing he was following a direct order from his manager, made the transfer without further verification . Only later did the bank discover that the IBAN indicated was associated with a fraudulent entity and promptly blocked the

Shai-Hulud Worm Spreads Beyond npm, Attacks Maven

Redazione RHC 28/11/2025

The Shai-Hulud worm has spread beyond the npm ecosystem and was discovered in Maven . Socket specialists noticed an infected package on Maven Central containing the same malicious components used in the second wave of Shai-Hulud attacks. Experts have identified the org.mvnpm:posthog-node:4.18.1 package on Maven Central, which contains two components characteristic of Shai-Hulud: the setup_bun.js loader and the main payload bun_environment.js. Currently, this is the only Java package found containing this malware. “The PostHog project was compromised in both the JavaScript/npm and Java/Maven ecosystems, with the same payload, Shai-Hulud v2, being used in all cases,” the researchers write. It’s important to note

11.7% of jobs could be replaced by artificial intelligence

Redazione RHC 28/11/2025

Artificial intelligence is currently capable of performing work equivalent to 11.7% of US employment . And not just in theory: in terms of monetary value, this value is already comparable to the salaries of human workers. An MIT study , developed as part of Project Iceberg , shows that, at the current level of technological development, it is possible to automate tasks worth approximately 1.2 trillion dollars, a market share in which artificial intelligence can already perform the same functions as humans, while costing less. Unlike previous estimates, which were based on assumptions about the “susceptibility of professions to automation,” the researchers

The market for “controlling” people is taking off on the Dark Web.

Redazione RHC 28/11/2025

BI.ZONE experts analyzed over 3,500 advertisements on darknet platforms offering dossiers on specific individuals, known as “probiv” (finding). One in five offers (21%) promises a complete profile of an individual. The market is divided into three price ranges. The budget one is a basic check based on one or two parameters: for example, searching for a person’s full name and date of birth using a phone number or email address. However, most offers (75%) are in the mid-range price range, around 20 euros. For this amount, they promise not only to verify a person’s identity using contact information, but also to compile

God is in the Cloud: They Hacked Your Brain and You Liked It

Fabrizio Saviano 28/11/2025

We’re in the age of paid deception. Your every click is a private referendum in which they, the algorithms, always win. And they’re never wrong: they observe you, profile you, know you better than your mother. You think you’re choosing the detergent, but instead, the detergent has chosen you. Advertising no longer sells products. It used to be said that you are the product, but that’s no longer the case. Advertising sells your attention, your reflexes, your tics. Manipulation today is automatic, and the beauty is that they call it “convenience.” They convince you that you make the decisions, but hitting the

Does Windows Suck? A Video by Dave Plummer, the Microsoft Engineer Who Created Task Manager

Redazione RHC 28/11/2025

Dave Plummer, a highly regarded former senior engineer at Microsoft who led the development of several key Windows components, including Task Manager, the Windows NT port of Space Cadet Pinball , and native support for ZIP files, has now publicly addressed a controversial issue, bluntly analyzing why Windows “sucks.” IT Home noted that in his latest YouTube video, “Windows “SUCKS”: How I’d Fix It by a Retired Microsoft Windows Engineer,” Plummer points out that many of the measures Microsoft has taken to simplify the operating system and improve the user experience for less experienced users have actually irritated a group of more

China surpasses US in open-source AI models

Redazione RHC 28/11/2025

China surpasses the United States in the global market for open-source artificial intelligence (AI) models. According to a November 26 Financial Times report, a study by MIT and open-source AI startup Hugging Face found that the share of downloads of open-source AI models developed by Chinese teams rose to 17% over the past year, surpassing their American counterparts for the first time and gaining a key lead in the global application of AI technology. Amid the AI boom sweeping the global tech industry, US tech giants such as OpenAI, Google, and Anthropic tend to adopt a ” closed ” strategy, maintaining complete

Category