Red Hot Cyber. The Cybersecurity Blog
Featured Articles
Security researchers have discovered two high-risk vulnerabilities (CVE-2025-20386 and CVE-2025-20387, with CVSS severity 8.0) affecting the Splunk Enterprise platform and Universal Forwarder componen...
The Apache Software Foundation has released a significant update for its popular Apache HTTP Server , addressing a total of five separate security vulnerabilities. Administrators are recommended to ap...
Efforts by legislators and law enforcement to combat money laundering and more complex SIM card verification procedures have not significantly weakened the position of anonymous number dealers. This c...
Developers and administrators around the world are urgently updating their servers following the discovery of a critical vulnerability in React Server, which allows attackers to remotely execute unaut...
During the registration process, a critical security flaw (CVE-2025-8489) in the King Addons WordPress Elementor plugin was exploited by attackers, allowing them to gain administrative privileges via ...
Brazilian Systems Targeted in Sophisticated OAST Exploit Campaign
Australian Man Jailed for Evil Twin Wi-Fi Scam Targeting Airline Passengers
KrakenBite Phishing Service Exposed
ADC Aerospace Hit by Play Ransomware Attack, Data Breach Feared
Microsoft 365 Security Risk: Interface Poisoning Attacks
Calendar Subscriptions: A Hidden Danger in Your Digital Life
Brazilian Systems Targeted in Sophisticated OAST Exploit Campaign
Redazione RHC - November 30th, 2025
Security researchers have discovered a sophisticated exploit campaign that leverages a private out-of-band application security testing (OAST) service hosted on Google Cloud infrastructure. The campaign primarily targets systems in Brazil...
Australian Man Jailed for Evil Twin Wi-Fi Scam Targeting Airline Passengers
Redazione RHC - November 30th, 2025
An Australian court has convicted a 44-year-old man who stole the personal data of airline passengers and airport visitors over several months . He was sentenced to seven years and...
KrakenBite Phishing Service Exposed
Redazione RHC - November 30th, 2025
The underground cybercrime market continues to evolve rapidly, fueled by specialized groups designing and selling tools for increasingly sophisticated digital scams. Among these, a particularly active player in recent weeks...
ADC Aerospace Hit by Play Ransomware Attack, Data Breach Feared
Redazione RHC - November 30th, 2025
American aviation and defense components manufacturer ADC Aerospace has found itself in the spotlight due to a possible cyber attack by the Play ransomware group, which appeared on their blog...
Microsoft 365 Security Risk: Interface Poisoning Attacks
Massimiliano Dal Cero - November 30th, 2025
This article analyzes the disclosure submitted to Microsoft and available in English on digitaldefense , where images, demonstration videos and a Python code example are available. In recent years, digital...
Calendar Subscriptions: A Hidden Danger in Your Digital Life
Redazione RHC - November 30th, 2025
Digital calendars have long been a convenient way to keep track of daily activities, but new research from Bitsight shows that this familiar tool can become a real attack channel....
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE