Contact
Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Home
Cyber Offensive Fundamentals 970x120 V0.1
    Cloud logs under threat? The method that exposes attackers early
    Carolina Vivianti | innovation | 07/02/2026

    You know that feeling when cloud alerts keep piling up and you’re left wondering whether it’s just background noise or something genuinely bad unfolding? Yeah, it happens all the time. Monitoring syst...

    Supply Chain Attack: How Notepad++ Was Compromised via CVE-2025-15556
    Manuel Roccon | Cybercrime | 04/02/2026

    In cybersecurity, we often focus on finding complex bugs in source code, ignoring the fact that end-user trust is built on a much simpler foundation: a download link. The Notepad++ incident, now class...

    Microsoft Office under attack: the bug needs to be patched to prevent Russian espionage.
    Bajram Zeqiri | Cyber News | 03/02/2026

    In recent days, APT28 , a well-known Russian-linked hacker group, has intensified its attacks by exploiting a vulnerability in Microsoft Office. The flaw, classified as CVE-2026-21509, was disclosed b...

    Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos
    Silvia Felici | Cyber News | 01/02/2026

    For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

    The world’s first humanoid robot store has opened in China. Will we be ready?
    Carolina Vivianti | innovation | 30/01/2026

    At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

    Douglas Engelbart was born today: the man who saw and invented the digital future.
    Massimiliano Brolli | Culture | 30/01/2026

    Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

    WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).
    Silvia Felici | Cyber News | 29/01/2026

    WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    Precedente Successivo

    Latest news

    NSA publishes first operational guidelines on Zero Trust Cyberpolitics

    NSA publishes first operational guidelines on Zero Trust

    The U.S. National Security Agency (NSA) has released the first two documents in its Zero Trust Implementation Guidelines (ZIGs) series,...
    Silvia Felici - January 28, 2026
    Ransomware doesn’t lock servers, it locks credit. The financial side of cybersecurity Culture

    Ransomware doesn’t lock servers, it locks credit. The financial side of cybersecurity

    There's this mistaken—somewhat romantic, if you will—idea that ransomware is "IT stuff": a few servers in trouble, a couple of...
    Antonio Piovesan - January 27, 2026
    AI Isn’t as Reliable as You Think: The Hidden Risks of LLMs Without Good Governance innovation

    AI Isn’t as Reliable as You Think: The Hidden Risks of LLMs Without Good Governance

    Adopting large language models (LLMs) without adequate governance, verification, and oversight risks legal, financial, and reputational damage. This data emerges...
    Silvia Felici - January 27, 2026
    Active Defense and Hackback: The Legal Labyrinth of Cybersecurity Culture

    Active Defense and Hackback: The Legal Labyrinth of Cybersecurity

    In our previous article, we explored how the cybersecurity professional's role as guarantor clashes with classic scenarios such as unauthorized...
    Paolo Galdieri - January 27, 2026
    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office Cyber News

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing...
    Pietro Melillo - January 27, 2026
    ServiceNow Under Attack: How an Email Can Open the Doors to Your Business Cyber News

    ServiceNow Under Attack: How an Email Can Open the Doors to Your Business

    The recent discovery of a vulnerability in ServiceNow’s AI platform has shaken the cybersecurity industry. This flaw, characterized by an...
    Redazione RHC - January 27, 2026
    « Previous   Next »

    The Thin Red Line of Criminal Liability in Cybersecurity

    This article is the first in a series of three articles exploring the delicate relationship between cybersecurity professionals and the current regulatory framework. In this first installment, we will analyze...

    - January 23rd, 2026

    Share on Facebook Share on LinkedIn Share on X

    China Bans Western Cybersecurity Software, Cites Security Fears

    Chinese authorities have begun quietly eliminating Western solutions from corporate networks in the country. According to Reuters sources, Chinese companies have been advised to stop using cybersecurity software from dozens...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    Vulnerabilities discovered in Foxit PDF Editor, Epic Games Store, and MedDream PACS

    Recently, the Cisco Talos vulnerability research and discovery team identified a number of vulnerabilities in various software. Specifically, three vulnerabilities were discovered in the Foxit PDF Editor , one vulnerability...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    OpenAI API Logs Vulnerability Exposed: Data Exfiltration Risk

    Imagine your chatbot worked properly and didn't display a malicious response to the user. But a leak still occurred later, in the most unexpected place, when the developer opened the...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms

    For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using fake job interviews to attack companies in Europe, Asia, the...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    KONNI Malware Targets Crypto Developers with AI-Powered Attacks

    Check Point Research recently discovered a sophisticated phishing campaign orchestrated by KONNI , a threat group linked to North Korea . Historically focused on diplomatic targets in South Korea, the...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    Zoom Security Alert: Critical Vulnerability in Node MMR Devices

    Zoom Video Communications has issued an urgent security advisory for a critical vulnerability (identified as CVE-2026-22844 ) affecting its enterprise infrastructure. The issue involves a command injection flaw in Zoom...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    LockBit 5.0 Ransomware: New Threats and Advanced Tactics

    The LockBit group, which many had quickly dismissed after high-profile failures and leaks, unexpectedly returned to the scene. In the fall of 2025, it unveiled a new version of its...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    Cisco Zero-Day Vulnerability CVE-2026-20045 Actively Exploited

    A critical zero-day remote code execution (RCE) vulnerability, identified as CVE-2026-20045, has been discovered by Cisco and is being actively exploited in active attacks. Cisco has urged immediate patching, and...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    Cybersecurity in Local Administrations: The Hidden Risk

    There's a convenient misconception in Italy: thinking that cybersecurity is a matter for ministries or large strategic players. It's reassuring. And it's wrong. In the real design of public connectivity,...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE