Contact
Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Home
Cyber Offensive Fundamentals 970x120 V0.1
    Supply Chain Attack: How Notepad++ Was Compromised via CVE-2025-15556
    Manuel Roccon | Cybercrime | 04/02/2026

    In cybersecurity, we often focus on finding complex bugs in source code, ignoring the fact that end-user trust is built on a much simpler foundation: a download link. The Notepad++ incident, now class...

    Microsoft Office under attack: the bug needs to be patched to prevent Russian espionage.
    Bajram Zeqiri | Cyber News | 03/02/2026

    In recent days, APT28 , a well-known Russian-linked hacker group, has intensified its attacks by exploiting a vulnerability in Microsoft Office. The flaw, classified as CVE-2026-21509, was disclosed b...

    Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos
    Silvia Felici | Cyber News | 01/02/2026

    For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

    The world’s first humanoid robot store has opened in China. Will we be ready?
    Carolina Vivianti | innovation | 30/01/2026

    At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

    Douglas Engelbart was born today: the man who saw and invented the digital future.
    Massimiliano Brolli | Culture | 30/01/2026

    Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

    WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).
    Silvia Felici | Cyber News | 29/01/2026

    WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    Precedente Successivo

    Latest news

    Vulnerabilities discovered in Foxit PDF Editor, Epic Games Store, and MedDream PACS Cyber News

    Vulnerabilities discovered in Foxit PDF Editor, Epic Games Store, and MedDream PACS

    Recently, the Cisco Talos vulnerability research and discovery team identified a number of vulnerabilities in various software. Specifically, three vulnerabilities...
    Massimiliano Brolli - January 22, 2026
    OpenAI API Logs Vulnerability Exposed: Data Exfiltration Risk Cyber News

    OpenAI API Logs Vulnerability Exposed: Data Exfiltration Risk

    Imagine your chatbot worked properly and didn't display a malicious response to the user. But a leak still occurred later,...
    Redazione RHC - January 22, 2026
    PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms Cyber News

    PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms

    For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using...
    Sandro Sana - January 22, 2026
    KONNI Malware Targets Crypto Developers with AI-Powered Attacks Cyber News

    KONNI Malware Targets Crypto Developers with AI-Powered Attacks

    Check Point Research recently discovered a sophisticated phishing campaign orchestrated by KONNI , a threat group linked to North Korea...
    Stefano Gazzella - January 22, 2026
    Zoom Security Alert: Critical Vulnerability in Node MMR Devices Cyber News

    Zoom Security Alert: Critical Vulnerability in Node MMR Devices

    Zoom Video Communications has issued an urgent security advisory for a critical vulnerability (identified as CVE-2026-22844 ) affecting its enterprise...
    Silvia Felici - January 22, 2026
    LockBit 5.0 Ransomware: New Threats and Advanced Tactics Cybercrime

    LockBit 5.0 Ransomware: New Threats and Advanced Tactics

    The LockBit group, which many had quickly dismissed after high-profile failures and leaks, unexpectedly returned to the scene. In the...
    Pietro Melillo - January 22, 2026
    « Previous   Next »

    Pig Butchering Scams Evolve with PBaaS: The New Threat

    Online scams known as "pig butchering" are undergoing a profound transformation. From artisanal and disorganized operations , based on makeshift call centers, they have become a structured, scalable, and highly...

    - January 12th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Apache Struts 2 Vulnerability CVE-2025-68493 Exposes Sensitive Data

    A new flaw has emerged in the foundation of one of the most popular Java frameworks on the web. Cybersecurity experts at ZAST.AI have discovered a significant security flaw in...

    - January 12th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Uncovering Dark AI: The Truth Behind Crime-as-a-Service Chatbots

    In recent months, the cybersecurity landscape has been awash with media hype surrounding new AI Dark Chatbots promoted as "Crime-as-a-Service" services on Telegram and the Dark Web. These platforms are...

    - January 12th, 2026

    Share on Facebook Share on LinkedIn Share on X

    AI-Generated Mac Malware: SimpleStealth Threatens User Security

    A group of industry specialists has identified for the first time a macOS malware whose code clearly shows signs of having been generated using artificial intelligence tools . The discovery,...

    - January 11th, 2026

    Share on Facebook Share on LinkedIn Share on X

    The Future of Tech: Sovereignty, Security, and Cloud Control

    In today's world, technology is no longer a mere tool for efficiency or convenience, but a primary geopolitical lever . Access to digital infrastructure, cloud platforms, and communications systems isn't...

    - January 11th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Internet Shutdowns Cost $19.7B in 2025, Sophisticated Censorship Rises

    Imagine a situation where the internet appears to be working, but websites won't open beyond the first screen, messaging apps are intermittent, and businesses are constantly changing. According to the...

    - January 11th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Instagram Data Leak Exposes 17.5 Million Users on Dark Web

    A massive digital archive containing the private information of approximately 17.5 million Instagram users appears to have fallen into the hands of cybercriminals. A few hours ago, the alarm was...

    - January 10th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Phishing Emails Mimic Internal Comms via Microsoft 365 Spoofing

    Phishing attacks are becoming increasingly insidious, to the point of perfectly mimicking internal corporate communications . This is the alarm raised by Microsoft, which has observed a significant increase in...

    - January 10th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Lovense Emily AI Doll: Revolutionary Companion at CES 2026

    At CES 2026 in Las Vegas, Lovense , known for its app-controlled smart toys for adults , decided to make a bold statement in a completely different format . Instead...

    - January 9th, 2026

    Share on Facebook Share on LinkedIn Share on X

    The Revolutionary iPhone Launch: A Game-Changing Moment in Tech History

    San Francisco: January 9, 2007 There was something strange about the air, like when you know something's about to happen but you don't know what. Steve Jobs was on stage...

    - January 9th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE