Contact
Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Home
TM RedHotCyber 970x120 042543
    Supply Chain Attack: How Notepad++ Was Compromised via CVE-2025-15556
    Manuel Roccon | Cybercrime | 04/02/2026

    In cybersecurity, we often focus on finding complex bugs in source code, ignoring the fact that end-user trust is built on a much simpler foundation: a download link. The Notepad++ incident, now class...

    Microsoft Office under attack: the bug needs to be patched to prevent Russian espionage.
    Bajram Zeqiri | Cyber News | 03/02/2026

    In recent days, APT28 , a well-known Russian-linked hacker group, has intensified its attacks by exploiting a vulnerability in Microsoft Office. The flaw, classified as CVE-2026-21509, was disclosed b...

    Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos
    Silvia Felici | Cyber News | 01/02/2026

    For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

    The world’s first humanoid robot store has opened in China. Will we be ready?
    Carolina Vivianti | innovation | 30/01/2026

    At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

    Douglas Engelbart was born today: the man who saw and invented the digital future.
    Massimiliano Brolli | Culture | 30/01/2026

    Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

    WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).
    Silvia Felici | Cyber News | 29/01/2026

    WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    Precedente Successivo

    Latest news

    Net-NTLMv1 Exploitation: Rainbow Tables for Modern Attacks Cyber News

    Net-NTLMv1 Exploitation: Rainbow Tables for Modern Attacks

    Mandiant has released a large set of rainbow tables dedicated to Net-NTLMv1 with the aim of concretely demonstrating how insecure...
    Redazione RHC - January 18, 2026
    Critical Vulnerability in Modular DS WordPress Plugin – Update Now Cyber News

    Critical Vulnerability in Modular DS WordPress Plugin – Update Now

    A high-severity security vulnerability has been identified in the WordPress plugin "Modular DS (Modular Connector)," and numerous security reports suggest...
    Manuel Roccon - January 18, 2026
    Your paycheck is zero! Congratulations, someone answered the phone wrong Cyber News

    Your paycheck is zero! Congratulations, someone answered the phone wrong

    No worker would accept their paycheck disappearing without explanation. It was precisely from a series of internal reports of this...
    Redazione RHC - January 18, 2026
    From Zero-Day Exploits to Hidden Tunnels: How UAT-8837 Operates Cyber News

    From Zero-Day Exploits to Hidden Tunnels: How UAT-8837 Operates

    Since early 2025, Cisco Talos specialists have detected the activity of the UAT-8837 group, which they attribute to China based...
    Agostino Pellegrino - January 17, 2026
    Gootloader Malware Returns with Enhanced Evasion Techniques Cybercrime

    Gootloader Malware Returns with Enhanced Evasion Techniques

    After a long period of silence, the Gootloader downloader malware has returned to the forefront. Last November, the Huntress team...
    Massimiliano Brolli - January 17, 2026
    US Considers Ramping Up Cyber Offensive Ops to Counter China Threats Cyber News

    US Considers Ramping Up Cyber Offensive Ops to Counter China Threats

    U.S. authorities are actively discussing the need to strengthen offensive cyber activities in the face of ongoing attacks on the...
    Agostino Pellegrino - January 17, 2026
    « Previous   Next »

    Critical RCE Vulnerability in D-Link DSL Routers – Update Now

    A critical remote code execution (RCE) flaw in older D-Link DSL routers has been identified as CVE-2026-0625, with a CVSS v4.0 score of 9.3, indicating a high risk for users...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Critical n8n Vulnerability: Update Now to Prevent RCE Attacks

    n8n, the “fair-code” workflow automation platform beloved by engineering teams for its combination of low-code speed and programming flexibility, has issued a critical security advisory. Few details are available on...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    LED Data Transmission System for Smart Traffic

    Researchers at Tokyo Polytechnic University have presented a simple and cost-effective wireless data transmission system using LEDs. The project boasts stable outdoor operation, even in bright sunlight, and could form...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Microsoft Shifts to Rust: AI-Driven Code Transformation by 2030

    Microsoft has launched one of the most ambitious code transformation programs ever announced in the software industry: the stated goal is to completely remove C and C++ from its core...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Microsoft’s AI Future: Models to Systems with Satya Nadella

    With 2026 just around the corner, Microsoft CEO Satya Nadella shared a thoughtful reflection on the state of the AI industry on SN Scratchpad , his new personal blog. In...

    - January 6th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Patchwork Group Unleashes StreamSpy Malware with WebSocket C2 Channel

    The Patchwork hacker group, also known as Dropping Elephant and Maha Grass , has returned to the spotlight after a series of targeted attacks on Pakistani defense facilities. In their...

    - January 6th, 2026

    Share on Facebook Share on LinkedIn Share on X

    WhatsApp Device Fingerprinting: New Measures Against Privacy Threats

    WhatsApp, Meta's messaging app with over 3 billion monthly active users, has begun introducing technical changes to mitigate several privacy vulnerabilities on user devices . The fixes, identified through independent...

    - January 6th, 2026

    Share on Facebook Share on LinkedIn Share on X

    PS5 BootROM Key Leaked, Sony’s Security Compromised

    A recent incident saw an anonymous hacker leak a crucial security key used by Sony to safeguard the integrity of the chain of trust in the PlayStation 5 console. This...

    - January 5th, 2026

    Share on Facebook Share on LinkedIn Share on X

    China Achieves Quantum Error Correction Breakthrough with Microchip

    For years, quantum computers have seemed like a futuristic technology: on paper, they can solve problems that classical machines can’t handle in a reasonable time, but in reality they constantly...

    - January 5th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Critical GNU Wget2 Vulnerability Exposes Users to File Overwrite Attacks

    A serious vulnerability has been discovered in the popular GNU command-line downloader Wget2 , which allows attackers to overwrite files on the victim's computer without their knowledge or consent. The...

    - January 5th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE