Contact
Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Home
TM RedHotCyber 970x120 042543
    Cloud logs under threat? The method that exposes attackers early
    Carolina Vivianti | innovation | 07/02/2026

    You know that feeling when cloud alerts keep piling up and you’re left wondering whether it’s just background noise or something genuinely bad unfolding? Yeah, it happens all the time. Monitoring syst...

    Supply Chain Attack: How Notepad++ Was Compromised via CVE-2025-15556
    Manuel Roccon | Cybercrime | 04/02/2026

    In cybersecurity, we often focus on finding complex bugs in source code, ignoring the fact that end-user trust is built on a much simpler foundation: a download link. The Notepad++ incident, now class...

    Microsoft Office under attack: the bug needs to be patched to prevent Russian espionage.
    Bajram Zeqiri | Cyber News | 03/02/2026

    In recent days, APT28 , a well-known Russian-linked hacker group, has intensified its attacks by exploiting a vulnerability in Microsoft Office. The flaw, classified as CVE-2026-21509, was disclosed b...

    Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos
    Silvia Felici | Cyber News | 01/02/2026

    For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

    The world’s first humanoid robot store has opened in China. Will we be ready?
    Carolina Vivianti | innovation | 30/01/2026

    At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

    Douglas Engelbart was born today: the man who saw and invented the digital future.
    Massimiliano Brolli | Culture | 30/01/2026

    Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

    WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).
    Silvia Felici | Cyber News | 29/01/2026

    WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    Precedente Successivo

    Latest news

    Zoom Security Alert: Critical Vulnerability in Node MMR Devices Cyber News

    Zoom Security Alert: Critical Vulnerability in Node MMR Devices

    Zoom Video Communications has issued an urgent security advisory for a critical vulnerability (identified as CVE-2026-22844 ) affecting its enterprise...
    Silvia Felici - January 22, 2026
    LockBit 5.0 Ransomware: New Threats and Advanced Tactics Cybercrime

    LockBit 5.0 Ransomware: New Threats and Advanced Tactics

    The LockBit group, which many had quickly dismissed after high-profile failures and leaks, unexpectedly returned to the scene. In the...
    Pietro Melillo - January 22, 2026
    Cisco Zero-Day Vulnerability CVE-2026-20045 Actively Exploited Vulnerability

    Cisco Zero-Day Vulnerability CVE-2026-20045 Actively Exploited

    A critical zero-day remote code execution (RCE) vulnerability, identified as CVE-2026-20045, has been discovered by Cisco and is being actively...
    Agostino Pellegrino - January 22, 2026
    Cybersecurity in Local Administrations: The Hidden Risk Cybercrime

    Cybersecurity in Local Administrations: The Hidden Risk

    There's a convenient misconception in Italy: thinking that cybersecurity is a matter for ministries or large strategic players. It's reassuring....
    Roberto Villani - January 22, 2026
    UK Organizations Hit by Russia-Backed DDoS Attacks Cyber News

    UK Organizations Hit by Russia-Backed DDoS Attacks

    The UK's National Cyber Security Centre has issued a strong warning regarding a series of denial-of-service (DDoS) attacks targeting British...
    Redazione RHC - January 22, 2026
    GitLab Security Update Fixes Critical Vulnerabilities CVE-2026-0723 Cyber News

    GitLab Security Update Fixes Critical Vulnerabilities CVE-2026-0723

    An urgent security update has been released by GitLab for the Community (CE) and Enterprise (EE) editions to address several...
    Massimiliano Brolli - January 21, 2026
    « Previous   Next »

    QR Code Phishing via HTML: New Attack Vector Emerges

    We know that criminal hackers always manage to surprise us, and this time too they surprise us with the innovation and ways they invent to overcome obstacles, such as anti-spam...

    - January 8th, 2026

    Share on Facebook Share on LinkedIn Share on X

    When Attack Discovery Becomes Automated, Detection Stops Scaling

    For much of the past two decades, cybersecurity has been built on a simple assumption: malicious activity can be detected, analysed, and responded to before meaningful damage occurs. This assumption...

    - January 8th, 2026

    Share on Facebook Share on LinkedIn Share on X

    VMware ESXi VM Escape Exploit: Advanced Threats Revealed

    A new report published by the Huntress Tactical Response Team documents a highly sophisticated intrusion detected in December 2025 , in which an advanced actor managed to compromise a VMware...

    - January 8th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Supply Chain Security: Protect Your Business from Cyber Threats

    In an increasingly interconnected digital ecosystem, companies depend on networks of suppliers and partners to operate efficiently. However, this interdependence has transformed the supply chain into a new critical cybersecurity...

    - January 8th, 2026

    Share on Facebook Share on LinkedIn Share on X

    CVE-2026-21858: n8n Vulnerability Exposes Thousands of Servers to RCE

    The vulnerability, identified as CVE-2026-21858, which we recently reported on, affects approximately 100,000 servers worldwide, threatening to expose proprietary API keys, customer databases, and AI workflows. The vulnerability, with a...

    - January 8th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Malware PHALT#BLYX Uses Social Engineering and MSBuild to Infect Systems

    A cancellation message from Booking.com with a high penalty seems like a typical business practice for hotels and apartments. But it's precisely this type of email that triggered a new...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    DevSecOps: Integrating Security into Your Development Process

    When it comes to application security, there's rarely a single problem. It's almost always a chain of small flaws, poor decisions, and missing controls that, when added together, pave the...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Critical RCE Vulnerability in D-Link DSL Routers – Update Now

    A critical remote code execution (RCE) flaw in older D-Link DSL routers has been identified as CVE-2026-0625, with a CVSS v4.0 score of 9.3, indicating a high risk for users...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    LED Data Transmission System for Smart Traffic

    Researchers at Tokyo Polytechnic University have presented a simple and cost-effective wireless data transmission system using LEDs. The project boasts stable outdoor operation, even in bright sunlight, and could form...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Microsoft’s AI Future: Models to Systems with Satya Nadella

    With 2026 just around the corner, Microsoft CEO Satya Nadella shared a thoughtful reflection on the state of the AI industry on SN Scratchpad , his new personal blog. In...

    - January 6th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE