The Exploit Post

Sign in Subscribe

Red Dog Security

Hackers Are Blackmailing Red Hat, Threatening to Publish Stolen Data

Hackers Are Blackmailing Red Hat, Threatening to Publish Stolen Data

The Scattered Lapsus$ Hunters group is attempting to blackmail Red Hat, claiming possession of sensitive internal data. Samples of customer interaction reports allegedly stolen from the company have appeared on the group’s leak site. The hackers say they demanded a ransom from Red Hat but have not yet received

DLBI: Data-Scraping Bots Are Creating a Shortage of Data Leaks

DLBI: Data-Scraping Bots Are Creating a Shortage of Data Leaks

Specialists from Data Leakage & Breach Intelligence (DLBI) have analyzed the Russian data leak market for the period January through September 2025 and identified an unexpected trend: data-scraping bot owners are buying out even small leaked databases, sometimes paying thousands or even tens of thousands of dollars for exclusive access.

Salesforce States It Will Not Pay Ransomware Hackers Who Stole 1 Billion Records

Salesforce States It Will Not Pay Ransomware Hackers Who Stole 1 Billion Records

Salesforce has confirmed that it will not negotiate or pay a ransom to the hackers responsible for stealing vast amounts of its customer data. The attackers are now attempting to extort 39 companies whose information was allegedly taken from Salesforce systems. Last week, the Scattered Lapsus$ Hunters group — a coalition

Fires in South Korean Data Centers Destroy 858 TB of Data and May Be Linked to North Korea

Fires in South Korean Data Centers Destroy 858 TB of Data and May Be Linked to North Korea

At the end of September 2025, South Korea suffered one of the most severe technological disasters in its history. Two fires in major data centers, occurring within a single week, paralyzed hundreds of government systems, including key online services for administration, postal operations, and tax filings. The country’s Prime

The Neon App, Which Paid for Recording Calls, Leaked User Conversations and Shut Down

The Neon App, Which Paid for Recording Calls, Leaked User Conversations and Shut Down

At the end of September 2025, Neon, an app that paid users to record their phone calls and sold the data to AI companies, briefly surged to the second spot on the Apple App Store. But its rapid rise ended just as quickly when a serious vulnerability was discovered that

A Critical Bug in Redis Threatens Thousands of Servers

A Critical Bug in Redis Threatens Thousands of Servers

The Redis security team has released patches for a critical vulnerability that allows attackers to remotely execute arbitrary code an issue that has existed unnoticed for nearly 13 years. The flaw, tracked as CVE-2025-49844 and rated 10.0 (Critical) on the CVSS scale, is a use-after-free vulnerability exploitable by authenticated

Microsoft Outlook Will Stop Displaying SVG Images Because Hackers Are Using Them

Microsoft Outlook Will Stop Displaying SVG Images Because Hackers Are Using Them

Microsoft announced that both the web version of Outlook and the new Outlook for Windows will no longer display embedded SVG images due to their increasing use in hacker attacks. The rollout of this new protective measure began in early September 2025 and is expected to be completed for all