Cybersecurity Blog | Penetration Testing, Website Security & Incident Response

Cybersecurity Insights
& Security Research

Expert analysis, threat intelligence, and practical guidance from Red Secure Tech's security specialists — covering penetration testing, vulnerability assessment, incident response, and secure development for UK businesses.

Ghost CMS SQL Injection Fuels ClickFix Attacks on 700 Sites

Threat actors took advantage of a critical SQL injection vulnerability present in Ghost CMS to insert malicious Javascript code into ClickFix campaigns launched against unsuspecting website visitors.&...

Eng. Donya Bino May 25, 2026

Read Full Article

All Articles 1184 articles — Page 1 of 148

Hacking

Ghost CMS SQL Injection Fuels ClickFix Attacks on 700 Sites

Threat actors took advantage of a critical SQL injection vulnerability present in Ghost CMS to insert malicious Javascript code into ClickFix campaigns lau...

Eng. Donya Bino
May 25, 2026

Read Article

Hacking

TrapDoor Supply Chain Attack Hits npm PyPI Cratesio

A new coordinated supply chain attack campaign has targeted three major package registries simultaneously, and the attackers are stealing developer credent...

Eng. Donya Bino
May 25, 2026

Read Article

Exploits

SolarEdge CSRF OOB Injection Compromises Monitoring

An essential flaw within the SolarEdge monitoring platform's business logic permits the takeover of an operator's session by an attacker, which will allow...

Eng. Donya Bino
May 25, 2026

Read Article

Awareness

I Lost My Phone, How to Remotely Wipe It Before Hackers Get Data

Your hand pats your pocket. Nothing. You check your bag. Nothing. You retrace your steps. Nothing.Your phone is gone. Panic sets in. Not because of the co...

Eng. Donya Bino
May 24, 2026

Read Article

Exploits

Cockpit SSH Argument Injection RCE Affects Versions 327-359

A security flaw in Cockpit allows an attacker to run arbitrary code on the server without authenticating first. The problem manifests itself through Cockpi...

Eng. Donya Bino
May 24, 2026

Read Article

Exploits

LiteSpeed cPanel Plugin Privilege Escalation CVSS 10 Exploited

An active exploitation of an extremely severe vulnerability was found on the LiteSpeed cPanel Plugin for User-End usage. This vulnerability allows attacker...

Eng. Donya Bino
May 24, 2026

Read Article

Hacking

Laravel Lang PHP Supply Chain Attack Steals Credentials

A software supply chain attack has compromised multiple PHP packages belonging to Laravel Lang, and the attackers have embedded a comprehensive credential-...

Eng. Donya Bino
May 23, 2026

Read Article

Exploits

Remote Sunrise Helper Unauthenticated File Listing Exploit

An issue with Remote Sunrise Helper, made by RS Ltd for Windows, allows unauthorized users access to view all files and folders on the device and has since...

Eng. Donya Bino
May 23, 2026

Read Article

1 2 3 4 5 6 7 8 9 10 ... 147 148

Cybersecurity Insights
& Security Research

Editor's Pick

Ghost CMS SQL Injection Fuels ClickFix Attacks on 700 Sites

Ghost CMS SQL Injection Fuels ClickFix Attacks on 700 Sites

TrapDoor Supply Chain Attack Hits npm PyPI Cratesio

SolarEdge CSRF OOB Injection Compromises Monitoring

I Lost My Phone, How to Remotely Wipe It Before Hackers Get Data

Cockpit SSH Argument Injection RCE Affects Versions 327-359

LiteSpeed cPanel Plugin Privilege Escalation CVSS 10 Exploited

Laravel Lang PHP Supply Chain Attack Steals Credentials

Remote Sunrise Helper Unauthenticated File Listing Exploit

Explore Our Cybersecurity Services

Website Recovery

Penetration Testing

Vulnerability Assessment

Secure Web Development

Red Teaming

Threat Intelligence

Cybersecurity Insights & Security Research

Website Recovery

Penetration Testing

Vulnerability Assessment

Secure Web Development

Red Teaming

Threat Intelligence

Cybersecurity Insights
& Security Research