Security news aggregator

Latest coverage for Red Hat

Stay updated on Red Hat's latest infosec features, patches, and system security measures with expert analysis and news on our dedicated tag page.

37 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Red Hat is a leading software company that provides open-source software products to the enterprise community. In the realm of information security, Red Hat is significantly crucial because it offers a range of solutions that help businesses secure their IT infrastructure and operations. The company develops Red Hat Enterprise Linux (RHEL), an operating system known for its robust security features, which include SELinux, an advanced access control system that enforces security policies.

Moreover, Red Hat provides additional software like Red Hat Satellite for infrastructure management and OpenShift for container application deployments, each designed with security in mind. Organizations rely on these solutions to maintain compliance, manage vulnerabilities, automate patching, and manage various security policies across their environments. Red Hat's commitment to security also extends to its involvement in security research, proactive vulnerability patching, and a transparent approach to security advisories.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 37 Filtered view

A large-scale npm supply chain attack compromised over 90 versions of @redhat-cloud-services packages, silently infecting CI/CD environments and developer systems. The malicious code steals credentials from GitHub, cloud platforms, and local machines, then spreads like a worm by republishing trusted packages. Discover how the attack works, what data is at risk, and the steps you can take to protect your organization. The post Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign appeared first on Microsoft Security Blog.

More from Microsoft Security Research 3 Jun 2026, 4:45 p.m. Incident · 4 stories Cloud Compromise Credentials Github Linux Malicious Code Microsoft Node.js Red Hat Supply Chain Theft Worm

​During the second day of Pwn2Own Berlin 2026, competitors collected $385,750 in cash awards after exploiting 15 unique zero-day vulnerabilities in multiple products, including Windows 11, Microsoft Exchange, and Red Hat Enterprise Linux for Workstations. [...]

More from Bleeping Computer 16 May 2026, 5:47 a.m. Incident · 5 stories 0-Day Award Linux Microsoft Pwn2Own Red Hat Vulnerability Windows 11
Krebs on Security 7 months, 3 weeks ago

ShinyHunters Wage Broad Corporate Extortion Spree

A cybercriminal group that used voice phishing attacks to siphon more than a billion records from Salesforce customers earlier this year has launched a website that threatens to publish data stolen from dozens of Fortune 500 firms if they refuse to pay a ransom. The group also claimed responsibility for a recent breach involving Discord user data, and for stealing terabytes of sensitive files from thousands of customers of the enterprise software maker Red Hat.

More from Krebs on Security 8 Oct 2025, 11:45 a.m. Breach Extortion Phishing Ransom Red Hat Theft

28,000 Customers, Including Banks and US Government Agencies, Appear to Be AffectedCommercial Linux distribution producer Red Hat has issued a security alert warning that attackers stole customer data from its consulting arm's GitLab instance. The hacking group, Crimson Collective, claims to have stolen one terabyte of data pertaining to 28,000 customers.

More from Bank Info Security 4 Oct 2025, 7:30 a.m. Breach Confirmation Government Hacking Linux Red Hat Theft Warning