Contact
Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Home
970x20 Itcentric
    Supply Chain Attack: How Notepad++ Was Compromised via CVE-2025-15556
    Manuel Roccon | Cybercrime | 04/02/2026

    In cybersecurity, we often focus on finding complex bugs in source code, ignoring the fact that end-user trust is built on a much simpler foundation: a download link. The Notepad++ incident, now class...

    Microsoft Office under attack: the bug needs to be patched to prevent Russian espionage.
    Bajram Zeqiri | Cyber News | 03/02/2026

    In recent days, APT28 , a well-known Russian-linked hacker group, has intensified its attacks by exploiting a vulnerability in Microsoft Office. The flaw, classified as CVE-2026-21509, was disclosed b...

    Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos
    Silvia Felici | Cyber News | 01/02/2026

    For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

    The world’s first humanoid robot store has opened in China. Will we be ready?
    Carolina Vivianti | innovation | 30/01/2026

    At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

    Douglas Engelbart was born today: the man who saw and invented the digital future.
    Massimiliano Brolli | Culture | 30/01/2026

    Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

    WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).
    Silvia Felici | Cyber News | 29/01/2026

    WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    Precedente Successivo

    Latest news

    APT28 Phishing Campaign: Credential Harvesting Tactics Cybercrime

    APT28 Phishing Campaign: Credential Harvesting Tactics

    The threat actor APT28 , classified as an Advanced Persistent Threat, active since at least 2004, identified by the alias...
    Lorenzo Nardi - January 13, 2026
    Iran Cyber Crisis: Connettività Compromised Cybercrime

    Iran Cyber Crisis: Connettività Compromised

    Sometimes important things don't arrive at a press conference. They arrive like a graph that stops breathing: the connectivity line...
    Roberto Villani - January 13, 2026
    Poisoning AI Data: The New Threat to Machine Learning Models Cyber News

    Poisoning AI Data: The New Threat to Machine Learning Models

    A bold new initiative has been launched in the artificial intelligence industry to weaken machine learning models by deliberately distorting...
    Luca Vinciguerra - January 12, 2026
    Pig Butchering Scams Evolve with PBaaS: The New Threat Cyber News

    Pig Butchering Scams Evolve with PBaaS: The New Threat

    Online scams known as "pig butchering" are undergoing a profound transformation. From artisanal and disorganized operations , based on makeshift...
    Bajram Zeqiri - January 12, 2026
    Apache Struts 2 Vulnerability CVE-2025-68493 Exposes Sensitive Data Cyber News

    Apache Struts 2 Vulnerability CVE-2025-68493 Exposes Sensitive Data

    A new flaw has emerged in the foundation of one of the most popular Java frameworks on the web. Cybersecurity...
    Agostino Pellegrino - January 12, 2026
    Uncovering Dark AI: The Truth Behind Crime-as-a-Service Chatbots Cyber News

    Uncovering Dark AI: The Truth Behind Crime-as-a-Service Chatbots

    In recent months, the cybersecurity landscape has been awash with media hype surrounding new AI Dark Chatbots promoted as "Crime-as-a-Service"...
    Bajram Zeqiri - January 12, 2026
    « Previous   Next »

    DriverFixer0428: macOS Credential Stealer Linked to North Korea

    A thorough static and dynamic analysis has led to the identification of a macOS malware called DriverFixer0428 , classified as a credential stealer and attributed with a medium-high confidence level...

    - December 25th, 2025

    Share on Facebook Share on LinkedIn Share on X

    A $500 Tool Claims to Kill EDRs at Kernel Level: Inside the NtKiller Underground Ad

    An ad has surfaced on a closed underground forum frequented by malware operators and initial access brokers, attracting the attention of the cyber threat intelligence community. The post promotes "NtKiller,"...

    - December 25th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Webrat Malware Targets Security Researchers with GitHub Exploit Traps

    There's a specific moment, almost always at night, when curiosity overtakes caution. A newly opened repository, few stars but a success. very high score, the README file is well written...

    - December 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Nezha Malware: Abusing Legitimate Tools for Remote Access

    There comes a moment, often too late, when you realize the problem didn't come from forcing the door, but from using the house keys. This is what happens when a...

    - December 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Massive Cloud Cyberespionage: PCPcat Hits 59,128 Servers in 48 Hours

    A large-scale, highly automated cyberespionage campaign is systematically targeting the cloud infrastructure that supports numerous modern web applications. In less than 48 hours, tens of thousands of servers have been...

    - December 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Australia Boosts Papua New Guinea’s Digital Infra with New Undersea Cable

    A new undersea cable funded by Australia under a recent mutual defence agreement with Papua New Guinea is set to strengthen the island country's digital infrastructure and ensure continuity of...

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    China Issues First Level 3 Autonomous Driving Licenses, Paving Way for Self-Driving Cars

    On December 23, the Traffic Management Bureau of the Beijing Municipal Public Security Bureau officially issued the first batch of Level 3 autonomous driving license plates to three intelligent vehicles....

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Spotify Web Scraping: Anna’s Archive Scrapes 300TB of Music Library

    Activists and hackers at Anna's Archive have reportedly combed nearly the entire music library of the largest streaming service, Spotify. They claim to have collected metadata for 256 million tracks...

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    CVE-2025-47761: FortiClient VPN Zero-Day Exploit Lets Privilege Escalation

    The following analysis examines the attack vector for CVE-2025-47761 , a vulnerability found in the Fortips_74.sys kernel driver used by FortiClient VPN for Windows. The core of the vulnerability lies...

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Ukrainian Hacker Charged in Major Ransomware Attacks

    A Ukrainian man implicated in a series of ransomware attacks has been found guilty in the United States. These cybercrimes affected companies in several countries, including the United States, Canada,...

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE