Red Hot Cyber. The Cybersecurity Blog
Featured Articles
Cybersecurity is a serious issue, especially when it comes to vulnerabilities that can compromise an entire system. Well, Hewlett Packard Enterprise (HPE) has just raised the alarm about a truly worry...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert including three new vulnerabilities in its catalog of exploited cyber threats (KEVs), highlighting that these fl...
The psychology of passwords starts right here: trying to understand people before systems. Welcome to “The Mind Behind Passwords,” the column that looks at cybersecurity. From a different perspect...
New details emerge from an Amazon Threat Intelligence report that highlight an alarming shift in Russian government-backed cyber operations. High-level 0-day exploits, often attributed to state-sponso...
A new version, 8.8.9, of the popular text editor Notepad++, has been released by its developers, fixing a flaw in the automatic update system . This issue came to light after some users and investigat...
Storm-0249 Uses DLL Sideloading in Highly Targeted Attacks
VS Code Extensions Infected with Sophisticated Malware via Typosquatting
NVIDIA Merlin Security Update: Fixing High-Severity Vulnerabilities
How Profanity Varies Across Social Media and Cultures
GhostFrame Phishing Kit: New Stealthy PhaaS Threat Emerges
WhatsApp: all it takes is a phone number to know when you sleep, go out, or come home
Storm-0249 Uses DLL Sideloading in Highly Targeted Attacks
Redazione RHC - December 14th, 2025
A well-known initial access broker (IAB) called " Storm-0249 " has changed its operational strategies, using phishing campaigns as well as highly targeted attacks, which exploit the very security tools...
VS Code Extensions Infected with Sophisticated Malware via Typosquatting
Redazione RHC - December 14th, 2025
A sophisticated malware campaign has been detected within the Visual Studio Code (VS Code) marketplace. Researchers at ReversingLabs (RL) have identified 19 malicious extensions that successfully evaded standard detection methods...
NVIDIA Merlin Security Update: Fixing High-Severity Vulnerabilities
Redazione RHC - December 14th, 2025
NVIDIA has released a significant security update for its Merlin framework, addressing several high-severity vulnerabilities. These vulnerabilities could allow attackers to execute malicious code or alter sensitive data within AI...
How Profanity Varies Across Social Media and Cultures
Redazione RHC - December 14th, 2025
Americans are the most likely to swear on social media, but Australians are more creative in their use of the infamous "f" swear word. This is the conclusion reached by...
GhostFrame Phishing Kit: New Stealthy PhaaS Threat Emerges
Redazione RHC - December 13th, 2025
Barracuda has released details of a new stealthy, evasive phishing-as-a-service (PhaaS) kit that hides malicious content within web page iframes to evade detection and maximize resilience. This is the first...
WhatsApp: all it takes is a phone number to know when you sleep, go out, or come home
Redazione RHC - December 13th, 2025
A tool has been released that allows for the discreet monitoring of WhatsApp and Signal user activity using just a phone number. The tracking mechanism covers over three billion accounts...
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE