Cybersecurity News and Cybercrime Analysis

Supply Chain Attack: How Notepad++ Was Compromised via CVE-2025-15556

Manuel Roccon | Cybercrime | 04/02/2026

In cybersecurity, we often focus on finding complex bugs in source code, ignoring the fact that end-user trust is built on a much simpler foundation: a download link. The Notepad++ incident, now class...

Microsoft Office under attack: the bug needs to be patched to prevent Russian espionage.

Bajram Zeqiri | Cyber News | 03/02/2026

In recent days, APT28 , a well-known Russian-linked hacker group, has intensified its attacks by exploiting a vulnerability in Microsoft Office. The flaw, classified as CVE-2026-21509, was disclosed b...

Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos

Silvia Felici | Cyber News | 01/02/2026

For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

The world’s first humanoid robot store has opened in China. Will we be ready?

Carolina Vivianti | innovation | 30/01/2026

At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

Douglas Engelbart was born today: the man who saw and invented the digital future.

Massimiliano Brolli | Culture | 30/01/2026

Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).

Silvia Felici | Cyber News | 29/01/2026

WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

Beware of “I am not a robot”: the malware trap that uses Google Calendar.

Bajram Zeqiri | Cybercrime | 29/01/2026

A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!

Bajram Zeqiri | Cybercrime | 28/01/2026

The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027

Silvia Felici | Cyberpolitics | 28/01/2026

This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office

Pietro Melillo | Cyber News | 27/01/2026

Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

Latest news

Cybercrime

When Attack Discovery Becomes Automated, Detection Stops Scaling

For much of the past two decades, cybersecurity has been built on a simple assumption: malicious activity can be detected,...

Alexander Rogan - January 8, 2026

Cyber News

VMware ESXi VM Escape Exploit: Advanced Threats Revealed

A new report published by the Huntress Tactical Response Team documents a highly sophisticated intrusion detected in December 2025 ,...

Silvia Felici - January 8, 2026

Cyber News

Supply Chain Security: Protect Your Business from Cyber Threats

In an increasingly interconnected digital ecosystem, companies depend on networks of suppliers and partners to operate efficiently. However, this interdependence...

Redazione RHC - January 8, 2026

Vulnerability

CVE-2026-21858: n8n Vulnerability Exposes Thousands of Servers to RCE

The vulnerability, identified as CVE-2026-21858, which we recently reported on, affects approximately 100,000 servers worldwide, threatening to expose proprietary API...

Agostino Pellegrino - January 8, 2026