Red Hot Cyber. The Cybersecurity Blog
When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, t...
CISA alert: Exploit underway against VMware vCenter. Risk of RCE without authentication.
The critical vulnerability recently added to the Cybersecurity and Infrastructure Security Agency (CISA) catalog of known exploited vulnerabilities (KEVs) affects the Broadcom VMware vCenter Server an...
“I Stole 120,000 Bitcoins”: The Confession of the Bitfinex Hacker Who Now Wants to Defend Cyberspace
The story ofIlya Lichtenstein, the hacker responsible for one of the largest cyber attacks ever carried out against cryptocurrencies, reads like an episode of a TV series, yet it is absolutely real. A...
NoName057(16) hits Italy 487 times in the last 3 months: the DDoS wave does not stop
Italy has confirmed itself as one of the main targets of the DDoS attack campaign carried out by the hacktivist group NoName057(16) . According to what was declared directly by the collective, our cou...
BlueNoroff: The Hacker Group Revolutionizing Cybercrime
The BlueNoroff hacker group has long since transformed cybercrime into a high-tech business, with tens of millions of dollars, cryptocurrency assets, and entire financial ecosystems at stake. A report...
Nearly 2,000 bugs in 100 dating apps: How your data can be stolen
A study of 100 dating apps revealed a disturbing picture: nearly 2,000 vulnerabilities were detected, 17% of which were classified as critical. The analysis was conducted by AppSec Solutions. The stud...
MacSync: The macOS malware that empties your wallet… after weeks
A new malware campaign has emerged in the macOS world, one that relies not on sophisticated exploits, but on good old-fashioned social engineering. It’s powered by the MacSync malware, distributed usi...
PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms
For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using fake job interviews to attack companies in Europe, Asia, the Middl...
KONNI Malware Targets Crypto Developers with AI-Powered Attacks
Check Point Research recently discovered a sophisticated phishing campaign orchestrated by KONNI , a threat group linked to North Korea . Historically focused on diplomatic targets in South Korea, the...
Cisco Zero-Day Vulnerability CVE-2026-20045 Actively Exploited
A critical zero-day remote code execution (RCE) vulnerability, identified as CVE-2026-20045, has been discovered by Cisco and is being actively exploited in active attacks. Cisco has urged immediate p...
Ultime news
Critical n8n Vulnerability: Update Now to Prevent RCE Attacks
Ledger Data Breach: Global-e Hack Exposes Customer Info
LED Data Transmission System for Smart Traffic
Microsoft Shifts to Rust: AI-Driven Code Transformation by 2030
Microsoft’s AI Future: Models to Systems with Satya Nadella
Rare Earth Elements: US-China Competition Heats Up
Cyber Attacks on the Rise: Wiper Malware and Data Destruction in 2025
Redazione RHC - December 22nd, 2025
MS13-089 Ransomware: Double Extortion Without Encryption
Inva Malaj - December 22nd, 2025
San Francisco Power Outage Exposes Waymo Self-Driving Car Vulnerabilities
Redazione RHC - December 22nd, 2025
Microsoft Shifts Activation Process: What It Means for Air-Gapped Systems
Redazione RHC - December 22nd, 2025
PuTTY Under Siege: Hackers Exploit Popular Client for SSH Attacks
Redazione RHC - December 22nd, 2025
OAuth Device Code Phishing: New Attack Vector for Account Takeover
Redazione RHC - December 22nd, 2025
DIG AI: The Dark Web’s New AI Tool for Cybercrime
Redazione RHC - December 21st, 2025
TikTok Accused of Illegally Tracking Users’ Data Across Apps
Stefano Gazzella - December 21st, 2025
Naftali Bennett Telegram Account Hacked in Israel Politics
Redazione RHC - December 21st, 2025
Cisco Secure Email Gateway Vulnerability Exploited: Act Now
Silvia Felici - December 21st, 2025
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE
Featured Articles
Cyber NewsOnce again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been exploited in cyberattacks. The issue, identified as…
Cyber NewsThe recent discovery of a vulnerability in ServiceNow’s AI platform has shaken the cybersecurity industry. This flaw, characterized by an extremely high severity score, allowed unauthenticated attackers to impersonate any corporate user. To launch the…
CybercrimeA recent leak revealed 149 million logins and passwords exposed online , including accounts for financial services, social media, gaming, and dating sites. The discovery was made by researcher Jeremiah Fowler and shared with ExpressVPN.…
CybercrimePixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, transforming each byte…
Cyber NewsSecurity researchers have recently observed a worrying evolution in the offensive tactics attributed to North Korean-linked actors as part of the campaign known as Contagious Interview : no longer simple fake job interview scams, but…












