Contact
Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Home
Crowdstriker 970×120
    Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos
    Silvia Felici | Cyber News | 01/02/2026

    For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

    The world’s first humanoid robot store has opened in China. Will we be ready?
    Carolina Vivianti | innovation | 30/01/2026

    At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

    Douglas Engelbart was born today: the man who saw and invented the digital future.
    Massimiliano Brolli | Culture | 30/01/2026

    Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

    WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).
    Silvia Felici | Cyber News | 29/01/2026

    WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni | Cybercrime | 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, t...

    CISA alert: Exploit underway against VMware vCenter. Risk of RCE without authentication.
    Manuel Roccon | Cyber News | 25/01/2026

    The critical vulnerability recently added to the Cybersecurity and Infrastructure Security Agency (CISA) catalog of known exploited vulnerabilities (KEVs) affects the Broadcom VMware vCenter Server an...

    Precedente Successivo

    Latest news

    Two Ukrainians Suspected in Black Basta Ransomware Attacks Cybercrime

    Two Ukrainians Suspected in Black Basta Ransomware Attacks

    When it comes to cybersecurity, it's not uncommon to come across news stories that seem straight out of a science...
    Pietro Melillo - January 17, 2026
    From Zero-Day Exploits to Hidden Tunnels: How UAT-8837 Operates Cyber News

    From Zero-Day Exploits to Hidden Tunnels: How UAT-8837 Operates

    Since early 2025, Cisco Talos specialists have detected the activity of the UAT-8837 group, which they attribute to China based...
    Agostino Pellegrino - January 17, 2026
    Gootloader Malware Returns with Enhanced Evasion Techniques Cybercrime

    Gootloader Malware Returns with Enhanced Evasion Techniques

    After a long period of silence, the Gootloader downloader malware has returned to the forefront. Last November, the Huntress team...
    Massimiliano Brolli - January 17, 2026
    US Considers Ramping Up Cyber Offensive Ops to Counter China Threats Cyber News

    US Considers Ramping Up Cyber Offensive Ops to Counter China Threats

    U.S. authorities are actively discussing the need to strengthen offensive cyber activities in the face of ongoing attacks on the...
    Agostino Pellegrino - January 17, 2026
    French Police Cyberattack Exposed: Weak Passwords Led to Data Breach Cyber News

    French Police Cyberattack Exposed: Weak Passwords Led to Data Breach

    During a hearing in the French Senate, Interior Minister Laurent Nuñez detailed the details of the cyberattack that hit his...
    Redazione RHC - January 17, 2026
    Cisco Zero-Day Vulnerability Exploited: Secure Email Gateway Under Attack Vulnerability

    Cisco Zero-Day Vulnerability Exploited: Secure Email Gateway Under Attack

    Cisco has confirmed that a critical zero-day security flaw, allowing remote code execution, is currently being actively exploited in its...
    Agostino Pellegrino - January 16, 2026
    « Previous   Next »

    VMware ESXi VM Escape Exploit: Advanced Threats Revealed

    A new report published by the Huntress Tactical Response Team documents a highly sophisticated intrusion detected in December 2025 , in which an advanced actor managed to compromise a VMware...

    - January 8th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Supply Chain Security: Protect Your Business from Cyber Threats

    In an increasingly interconnected digital ecosystem, companies depend on networks of suppliers and partners to operate efficiently. However, this interdependence has transformed the supply chain into a new critical cybersecurity...

    - January 8th, 2026

    Share on Facebook Share on LinkedIn Share on X

    CVE-2026-21858: n8n Vulnerability Exposes Thousands of Servers to RCE

    The vulnerability, identified as CVE-2026-21858, which we recently reported on, affects approximately 100,000 servers worldwide, threatening to expose proprietary API keys, customer databases, and AI workflows. The vulnerability, with a...

    - January 8th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Malware PHALT#BLYX Uses Social Engineering and MSBuild to Infect Systems

    A cancellation message from Booking.com with a high penalty seems like a typical business practice for hotels and apartments. But it's precisely this type of email that triggered a new...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Disable Windows 11 AI Features Easily with RemoveWindowsAI Tool

    A new open-source script allows Windows 11 users to widely disable the operating system's built-in artificial intelligence features . The project, developed by Zoicware , is called RemoveWindowsAI and aims...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    DevSecOps: Integrating Security into Your Development Process

    When it comes to application security, there's rarely a single problem. It's almost always a chain of small flaws, poor decisions, and missing controls that, when added together, pave the...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Critical RCE Vulnerability in D-Link DSL Routers – Update Now

    A critical remote code execution (RCE) flaw in older D-Link DSL routers has been identified as CVE-2026-0625, with a CVSS v4.0 score of 9.3, indicating a high risk for users...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Critical n8n Vulnerability: Update Now to Prevent RCE Attacks

    n8n, the “fair-code” workflow automation platform beloved by engineering teams for its combination of low-code speed and programming flexibility, has issued a critical security advisory. Few details are available on...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Ledger Data Breach: Global-e Hack Exposes Customer Info

    Hackers have infiltrated Global-e's systems, and some Ledger customers are now at risk of receiving highly convincing scam emails. Ledger has alerted some customers of a possible personal data breach...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    LED Data Transmission System for Smart Traffic

    Researchers at Tokyo Polytechnic University have presented a simple and cost-effective wireless data transmission system using LEDs. The project boasts stable outdoor operation, even in bright sunlight, and could form...

    - January 7th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE