Contact
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.
Home
Beware of WhatsApp groups: An image can compromise your smartphone.-ServiceNow Under Attack: How an Email Can Open the Doors to Your Business-149 Million Accounts Exposed: The Database No One Should Have Seen-Shocking Discovery on Instagram: Private Posts Accessible Without Login!-Email Security Under Pressure: Phishing Kits to Double in 2025-Beware of WhatsApp groups: An image can compromise your smartphone.-ServiceNow Under Attack: How an Email Can Open the Doors to Your Business-149 Million Accounts Exposed: The Database No One Should Have Seen-Shocking Discovery on Instagram: Private Posts Accessible Without Login!-Email Security Under Pressure: Phishing Kits to Double in 2025
Crowdstrike 320×100
970x120 Enterprise 1

Red Hot Cyber. The Cybersecurity Blog

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni | Cybercrime | 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, t...

    CISA alert: Exploit underway against VMware vCenter. Risk of RCE without authentication.
    Manuel Roccon | Cyber News | 25/01/2026

    The critical vulnerability recently added to the Cybersecurity and Infrastructure Security Agency (CISA) catalog of known exploited vulnerabilities (KEVs) affects the Broadcom VMware vCenter Server an...

    “I Stole 120,000 Bitcoins”: The Confession of the Bitfinex Hacker Who Now Wants to Defend Cyberspace
    Agostino Pellegrino | Cyber News | 25/01/2026

    The story ofIlya Lichtenstein, the hacker responsible for one of the largest cyber attacks ever carried out against cryptocurrencies, reads like an episode of a TV series, yet it is absolutely real. A...

    NoName057(16) hits Italy 487 times in the last 3 months: the DDoS wave does not stop
    Marcello Filacchioni | Cyber News | 24/01/2026

    Italy has confirmed itself as one of the main targets of the DDoS attack campaign carried out by the hacktivist group NoName057(16) . According to what was declared directly by the collective, our cou...

    BlueNoroff: The Hacker Group Revolutionizing Cybercrime
    Marcello Filacchioni | Cyber News | 23/01/2026

    The BlueNoroff hacker group has long since transformed cybercrime into a high-tech business, with tens of millions of dollars, cryptocurrency assets, and entire financial ecosystems at stake. A report...

    Nearly 2,000 bugs in 100 dating apps: How your data can be stolen
    Agostino Pellegrino | Cyber News | 23/01/2026

    A study of 100 dating apps revealed a disturbing picture: nearly 2,000 vulnerabilities were detected, 17% of which were classified as critical. The analysis was conducted by AppSec Solutions. The stud...

    MacSync: The macOS malware that empties your wallet… after weeks
    Massimiliano Brolli | Cyber News | 23/01/2026

    A new malware campaign has emerged in the macOS world, one that relies not on sophisticated exploits, but on good old-fashioned social engineering. It’s powered by the MacSync malware, distributed usi...

    PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms
    Sandro Sana | Cyber News | 22/01/2026

    For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using fake job interviews to attack companies in Europe, Asia, the Middl...

    KONNI Malware Targets Crypto Developers with AI-Powered Attacks
    Stefano Gazzella | Cyber News | 22/01/2026

    Check Point Research recently discovered a sophisticated phishing campaign orchestrated by KONNI , a threat group linked to North Korea . Historically focused on diplomatic targets in South Korea, the...

    Precedente Successivo

    Ultime news

    PuTTY Under Siege: Hackers Exploit Popular Client for SSH Attacks Cyber News

    PuTTY Under Siege: Hackers Exploit Popular Client for SSH Attacks

    Hackers love to exploit the most innocuous tools to infiltrate their targets' networks, and we all know this. And in...
    Redazione RHC - 22 December 2025
    OAuth Device Code Phishing: New Attack Vector for Account Takeover Cyber News

    OAuth Device Code Phishing: New Attack Vector for Account Takeover

    Cybercriminals are getting smarter and have found a new way to exploit corporate security protocols. It seems incredible, but it's...
    Pietro Melillo - 22 December 2025
    DIG AI: The Dark Web’s New AI Tool for Cybercrime Cyber News

    DIG AI: The Dark Web’s New AI Tool for Cybercrime

    A new AI tool has appeared on the dark web and quickly attracted the attention of security experts, and not...
    Redazione RHC - 21 December 2025
    TikTok Accused of Illegally Tracking Users’ Data Across Apps Cybercrime

    TikTok Accused of Illegally Tracking Users’ Data Across Apps

    The popular video app TikTok has found itself at the center of a new scandal over violations of European data...
    Stefano Gazzella - 21 December 2025
    Naftali Bennett Telegram Account Hacked in Israel Politics Cyber News

    Naftali Bennett Telegram Account Hacked in Israel Politics

    Former Israeli Prime Minister Naftali Bennett has admitted that his Telegram account was hacked, although his device was not compromised....
    Redazione RHC - 21 December 2025
    Cisco Secure Email Gateway Vulnerability Exploited: Act Now Cyber News

    Cisco Secure Email Gateway Vulnerability Exploited: Act Now

    A critical zero-day flaw in Cisco Secure Email Gateway and Cisco Secure Email and Web Manager devices is causing concern...
    Silvia Felici - 21 December 2025
    « Precedente   Successivo »

    Critical Vulnerability in Iskra iHUB Devices Exposed

    A serious security vulnerability has been discovered in smart metering infrastructure, which could expose utility networks to remote takeover risks. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued...

    - December 3rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Roblox Down Russia

    Today, the Roblox gaming platform went offline in Russia. However, international services that monitor network outages reported no issues during the same period. The main complaints concerned the inability to...

    - December 3rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Inside Lazarus! The fake candidate who fooled North Korean cyber spies

    A joint investigation by BCA LTD, NorthScan, and ANY.RUN has exposed one of North Korea's most secretive hacking schemes. Under the guise of routine recruitment, the team monitored how operators...

    - December 3rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Kawasaki CORLEO Robot Quadrupede for Human Transport by 2035

    Kawasaki Heavy Industries plans to launch a quadruped robot capable of carrying humans in 2035. Kawasaki Heavy Industries announced on December 3 that it has begun production of " CORLEO...

    - December 3rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Candle Subsea Cable Revolutionizes Asia-Pacific Internet Connectivity

    70 million simultaneous 8K videos at 570 Tbps ! This is a staggering amount of transport power in a submarine cable and will change internet access in the Asia-Pacific region....

    - December 3rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Google Chrome 143 Patch Fixes Critical V8 JavaScript Vulnerability

    Google has released Chrome 143 for Windows, macOS, and Linux; the release contains an important patch. The new version ( 143.0.7499.40 for Linux and 143.0.7499.40/41 for Windows and macOS) addresses...

    - December 3rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Cybersecurity in December: How Compliance Hurries Leave Companies Vulnerable

    December isn't just about Christmas lights: for those working in cybersecurity, it's the month when the human factor collapses and companies rush to buy solutions just to be "compliant" for...

    - December 3rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Managing AI Agents: Mitigating Security Risks in Autonomous Systems

    The widespread adoption of artificial intelligence in businesses is profoundly transforming operational processes and, at the same time, introducing new security vulnerabilities . Companies are using these systems to increase...

    - December 3rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Mistral AI Unveils Powerful Open Source Models for Advanced AI Applications

    French company Mistral AI has unveiled its Mistral 3 line of models, making them fully open source under the Apache 2.0 license . The series includes several compact and dense...

    - December 3rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Maha Grass APT Group Unleashes StreamSpy Malware Attacks

    The Patchwork cyber espionage group — also known as Hangover or Dropping Elephant and internally tracked by QiAnXin as APT-Q-36 — has been active since 2009 and is believed to...

    - December 3rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

    Featured Articles

    Immagine del sitoCyber News
    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo - 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been exploited in cyberattacks. The issue, identified as…

    Immagine del sitoCyber News
    ServiceNow Under Attack: How an Email Can Open the Doors to Your Business
    Redazione RHC - 27/01/2026

    The recent discovery of a vulnerability in ServiceNow’s AI platform has shaken the cybersecurity industry. This flaw, characterized by an extremely high severity score, allowed unauthenticated attackers to impersonate any corporate user. To launch the…

    Immagine del sitoCybercrime
    149 Million Accounts Exposed: The Database No One Should Have Seen
    Redazione RHC - 26/01/2026

    A recent leak revealed 149 million logins and passwords exposed online , including accounts for financial services, social media, gaming, and dating sites. The discovery was made by researcher Jeremiah Fowler and shared with ExpressVPN.…

    Immagine del sitoCybercrime
    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni - 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, transforming each byte…

    Immagine del sitoCyber News
    How a simple Visual Studio Code file can become a backdoor for state-run hackers
    Redazione RHC - 26/01/2026

    Security researchers have recently observed a worrying evolution in the offensive tactics attributed to North Korean-linked actors as part of the campaign known as Contagious Interview : no longer simple fake job interview scams, but…