Contact
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.
Home
And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office-ServiceNow Under Attack: How an Email Can Open the Doors to Your Business-Shocking Discovery on Instagram: Private Posts Accessible Without Login!-Email Security Under Pressure: Phishing Kits to Double in 2025-How a simple Visual Studio Code file can become a backdoor for state-run hackers-And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office-ServiceNow Under Attack: How an Email Can Open the Doors to Your Business-Shocking Discovery on Instagram: Private Posts Accessible Without Login!-Email Security Under Pressure: Phishing Kits to Double in 2025-How a simple Visual Studio Code file can become a backdoor for state-run hackers
320x100 Itcentric
Banner Desktop

Red Hot Cyber. The Cybersecurity Blog

    149 Million Accounts Exposed: The Database No One Should Have Seen
    Massimiliano Brolli | Cybercrime | 26/01/2026

    A recent leak revealed 149 million logins and passwords exposed online , including accounts for financial services, social media, gaming, and dating sites. The discovery was made by researcher Jeremia...

    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni | Cybercrime | 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, t...

    CISA alert: Exploit underway against VMware vCenter. Risk of RCE without authentication.
    Manuel Roccon | Cyber News | 25/01/2026

    The critical vulnerability recently added to the Cybersecurity and Infrastructure Security Agency (CISA) catalog of known exploited vulnerabilities (KEVs) affects the Broadcom VMware vCenter Server an...

    “I Stole 120,000 Bitcoins”: The Confession of the Bitfinex Hacker Who Now Wants to Defend Cyberspace
    Agostino Pellegrino | Cyber News | 25/01/2026

    The story ofIlya Lichtenstein, the hacker responsible for one of the largest cyber attacks ever carried out against cryptocurrencies, reads like an episode of a TV series, yet it is absolutely real. A...

    NoName057(16) hits Italy 487 times in the last 3 months: the DDoS wave does not stop
    Marcello Filacchioni | Cyber News | 24/01/2026

    Italy has confirmed itself as one of the main targets of the DDoS attack campaign carried out by the hacktivist group NoName057(16) . According to what was declared directly by the collective, our cou...

    Nearly 2,000 bugs in 100 dating apps: How your data can be stolen
    Agostino Pellegrino | Cyber News | 23/01/2026

    A study of 100 dating apps revealed a disturbing picture: nearly 2,000 vulnerabilities were detected, 17% of which were classified as critical. The analysis was conducted by AppSec Solutions. The stud...

    MacSync: The macOS malware that empties your wallet… after weeks
    Massimiliano Brolli | Cyber News | 23/01/2026

    A new malware campaign has emerged in the macOS world, one that relies not on sophisticated exploits, but on good old-fashioned social engineering. It’s powered by the MacSync malware, distributed usi...

    PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms
    Sandro Sana | Cyber News | 22/01/2026

    For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using fake job interviews to attack companies in Europe, Asia, the Middl...

    KONNI Malware Targets Crypto Developers with AI-Powered Attacks
    Stefano Gazzella | Cyber News | 22/01/2026

    Check Point Research recently discovered a sophisticated phishing campaign orchestrated by KONNI , a threat group linked to North Korea . Historically focused on diplomatic targets in South Korea, the...

    Cisco Zero-Day Vulnerability CVE-2026-20045 Actively Exploited
    Agostino Pellegrino | Vulnerability | 22/01/2026

    A critical zero-day remote code execution (RCE) vulnerability, identified as CVE-2026-20045, has been discovered by Cisco and is being actively exploited in active attacks. Cisco has urged immediate p...

    Precedente Successivo

    Ultime news

    GhostFrame Phishing Kit: New Stealthy PhaaS Threat Emerges Cyber News

    GhostFrame Phishing Kit: New Stealthy PhaaS Threat Emerges

    Barracuda has released details of a new stealthy, evasive phishing-as-a-service (PhaaS) kit that hides malicious content within web page iframes...
    Silvia Felici - 14 December 2025
    WhatsApp: all it takes is a phone number to know when you sleep, go out, or come home Cyber News

    WhatsApp: all it takes is a phone number to know when you sleep, go out, or come home

    A tool has been released that allows for the discreet monitoring of WhatsApp and Signal user activity using just a...
    Redazione RHC - 14 December 2025
    Cyber Geopolitics: How Tech Becomes a Global Battleground Cybercrime

    Cyber Geopolitics: How Tech Becomes a Global Battleground

    Over the past two years, cyber has ceased to be a " technical " dimension of the conflict and has...
    Roberto Villani - 14 December 2025
    SOAP Vulnerability in .NET Framework Allows Remote Code Execution Vulnerability

    SOAP Vulnerability in .NET Framework Allows Remote Code Execution

    Security researchers have discovered a vulnerability in .NET that could affect several enterprise products and lead to remote code execution....
    Agostino Pellegrino - 14 December 2025
    CVE-2025-55182 React Server Components Vulnerability Exploited Cyber News

    CVE-2025-55182 React Server Components Vulnerability Exploited

    A recent report from the Google Threat Intelligence Group (GTIG) illustrates the chaotic results of this information dissemination, highlighting how...
    Redazione RHC - 13 December 2025
    Top 25 Software Vulnerabilities 2025: MITRE CWE Ranking and Security Tips Cyber News

    Top 25 Software Vulnerabilities 2025: MITRE CWE Ranking and Security Tips

    MITRE has released its ranking of the 25 most dangerous software vulnerabilities predicted for 2025, based on data collected through...
    Redazione RHC - 13 December 2025
    « Precedente   Successivo »

    Satoshi Nakamoto’s Net Worth Drops 34% as Cryptocurrency Crash

    The net worth of Satoshi Nakamoto, the mysterious figure known as the founder of Bitcoin, has dropped 34% in the last month due to the recent virtual asset crash ....

    - November 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Cyberattack on Eurofiber France: Find out what happened

    On November 13, Eurofiber France, a respected provider of fiber optic network and VPN solutions to many of France's leading companies, discovered that its systems had been compromised by criminal...

    - November 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    From Risk to Resilience: How Veeam Protects Your Supply Chain from Disruptions

    With the increasing digitalization of the supply chain , resilience is no longer just about logistics and suppliers, but also the security and visibility of IT systems. Disruptions are no...

    - November 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    When the Cloud Falls: How a Small Mistake Brought the Global Internet to Its Knees

    This fall, we've had quite a bit of a cloud headache, I don't know if you've noticed. That is, AWS, Azure , and then Cloudflare . All of them down,...

    - November 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Father and son break world speed record with homemade drone

    This summer, in the Dubai desert, a flight occurred that few expected to see from a battery-powered quadcopter. The experimental Peregreen 3 reached a speed of 360.4 miles per hour...

    - November 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Microsoft Blocks KMS38 Activation Method for Windows 10 and 11

    Users noticed that last week Microsoft developers disabled the offline activation method for Windows 11 and 10 via KMS38, which has been used by hackers around the world for years....

    - November 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Future prospects for computer science and technology graduates

    Artificial intelligence is changing the way recent computer science graduates approach the world of work. It's not about sudden job disappearances , but rather a transformation of entry-level roles in...

    - November 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    ATMs targeted! Cybersecurity experts reveal an attack campaign targeting ATMs.

    Group-IB experts presented a detailed analysis of the long-running UNC2891 campaign, which demonstrated the continuing sophistication of ATM attack schemes. Attention focused on the Raspberry Pi, which the attackers used...

    - November 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Google Gemini Improves AI-Generated Image Verification

    Google has expanded the capabilities of its Gemini artificial intelligence service by adding a tool to the app and web version to check images for signs of automatic generation ....

    - November 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    “We Want to Hack You Again!” NSO Group Rejects WhatsApp’s Pegasus Lawsuit

    Israeli company NSO Group has appealed a California federal court ruling that bars it from using WhatsApp's infrastructure to distribute its Pegasus surveillance software. The case, which has been ongoing...

    - November 22nd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

    Featured Articles

    Immagine del sitoCyber News
    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Redazione RHC - 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been exploited in cyberattacks. The issue, identified as…

    Immagine del sitoCyber News
    ServiceNow Under Attack: How an Email Can Open the Doors to Your Business
    Redazione RHC - 27/01/2026

    The recent discovery of a vulnerability in ServiceNow’s AI platform has shaken the cybersecurity industry. This flaw, characterized by an extremely high severity score, allowed unauthenticated attackers to impersonate any corporate user. To launch the…

    Immagine del sitoCybercrime
    149 Million Accounts Exposed: The Database No One Should Have Seen
    Massimiliano Brolli - 26/01/2026

    A recent leak revealed 149 million logins and passwords exposed online , including accounts for financial services, social media, gaming, and dating sites. The discovery was made by researcher Jeremiah Fowler and shared with ExpressVPN.…

    Immagine del sitoCybercrime
    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni - 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, transforming each byte…

    Immagine del sitoCyber News
    How a simple Visual Studio Code file can become a backdoor for state-run hackers
    Redazione RHC - 26/01/2026

    Security researchers have recently observed a worrying evolution in the offensive tactics attributed to North Korean-linked actors as part of the campaign known as Contagious Interview : no longer simple fake job interview scams, but…