Red Hot Cyber

Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.

Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.

Cyber Offensive Fundamentals 320x200 V0.1

LECS 970x120 1

Red Hot Cyber. The Cybersecurity Blog

NexPhone: Three operating systems in your pocket! The phone that challenges the very concept of a PC.

BlueNoroff: The Hacker Group Revolutionizing Cybercrime

Nearly 2,000 bugs in 100 dating apps: How your data can be stolen

MacSync: The macOS malware that empties your wallet… after weeks

Larva-25012 Proxyjacking Campaign Targets South Korea with Notepad++ Malware

PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms

KONNI Malware Targets Crypto Developers with AI-Powered Attacks

Fortinet FortiOS Vulnerability Exploited: CVE-2025-59718 Patch Bypass

Cisco Zero-Day Vulnerability CVE-2026-20045 Actively Exploited

Red Hot Cyber and Hack The Box: together for the CTF at the RHC 2026 conference

Ultime news

French Police Cyberattack Exposed: Weak Passwords Led to Data Breach

Cybercrime

French Police Cyberattack Exposed: Weak Passwords Led to Data Breach

During a hearing in the French Senate, Interior Minister Laurent Nuñez detailed the details of the cyberattack that hit his...

Redazione RHC - 17 January 2026

Cisco Zero-Day Vulnerability Exploited: Secure Email Gateway Under Attack

Cybercrime

Cisco Zero-Day Vulnerability Exploited: Secure Email Gateway Under Attack

Cisco has confirmed that a critical zero-day security flaw, allowing remote code execution, is currently being actively exploited in its...

Redazione RHC - 16 January 2026

AWS CodeBuild Vulnerability Exposed: CodeBreach Threat Revealed

Cybercrime

AWS CodeBuild Vulnerability Exposed: CodeBreach Threat Revealed

Security researchers at Wiz have discovered a critical vulnerability in the AWS CodeBuild service that could allow an attacker to...

Redazione RHC - 16 January 2026

Microsoft Patches Zero-Day NTFS Vulnerabilities in Windows 11 and Server

Cybercrime

Microsoft Patches Zero-Day NTFS Vulnerabilities in Windows 11 and Server

Microsoft released a security update in January that addresses two serious zero-day vulnerabilities in the NTFS file system. The vulnerabilities...

Redazione RHC - 16 January 2026

AVCheck Malware Service Shut Down: Dutch Man Arrested for Cybercrime

Cybercrime

AVCheck Malware Service Shut Down: Dutch Man Arrested for Cybercrime

Law enforcement has announced the arrest of a 33-year-old Dutch citizen on suspicion of operating the AVCheck platform, an online...

Redazione RHC - 16 January 2026

VoidLink Malware: Advanced Linux Framework Targets Cloud Infrastructures

Cybercrime

VoidLink Malware: Advanced Linux Framework Targets Cloud Infrastructures

Check Point researchers have discovered a new Linux infection framework distinguished by its advanced modular architecture and wide range of...

Redazione RHC - 16 January 2026

« Precedente Successivo »

APT28 Phishing Campaign: Credential Harvesting Tactics

Lorenzo Nardi - January 13th, 2026

The threat actor APT28 , classified as an Advanced Persistent Threat, active since at least 2004, identified by the alias BlueDelta, but even better known under the name IRON TWILIGHT...

Iran Cyber Crisis: Connettività Compromised

Roberto Villani - January 13th, 2026

Sometimes important things don't arrive at a press conference. They arrive like a graph that stops breathing: the connectivity line collapses, the OSINT dries up, the noise grows as the...

ServiceNow AI Vulnerability CVE-2025-12420: Critical Security Risk

Redazione RHC - January 13th, 2026

A critical flaw has been identified in ServiceNow's artificial intelligence platform, with a severity score of 9.3 out of 10. This vulnerability, classified as CVE-2025-12420, could allow attackers to impersonate...

Microsoft Expands Global Network with New Undersea Fiber Optic Cables

Redazione RHC - January 13th, 2026

In May 2015, Microsoft announced a series of strategic agreements to strengthen its global network infrastructure with new submarine fiber optic cables . This initiative is part of a broader...

Poisoning AI Data: The New Threat to Machine Learning Models

Redazione RHC - January 12th, 2026

A bold new initiative has been launched in the artificial intelligence industry to weaken machine learning models by deliberately distorting the data used to train them. The project, called Poison...

Pig Butchering Scams Evolve with PBaaS: The New Threat

Redazione RHC - January 12th, 2026

Online scams known as "pig butchering" are undergoing a profound transformation. From artisanal and disorganized operations , based on makeshift call centers, they have become a structured, scalable, and highly...

Apache Struts 2 Vulnerability CVE-2025-68493 Exposes Sensitive Data

Redazione RHC - January 12th, 2026

A new flaw has emerged in the foundation of one of the most popular Java frameworks on the web. Cybersecurity experts at ZAST.AI have discovered a significant security flaw in...

CRISPR-Cas13: Breakthrough in Flu Treatment with Gene Editing

Redazione RHC - January 12th, 2026

Influenza remains one of the most stubborn and unpleasant infections on the planet. It returns every winter, mutating, evading the immune system, and eventually becoming drug-resistant. Now, scientists are proposing...

Uncovering Dark AI: The Truth Behind Crime-as-a-Service Chatbots

Redazione RHC - January 12th, 2026

In recent months, the cybersecurity landscape has been awash with media hype surrounding new AI Dark Chatbots promoted as "Crime-as-a-Service" services on Telegram and the Dark Web. These platforms are...

AI-Generated Mac Malware: SimpleStealth Threatens User Security

Redazione RHC - January 11th, 2026

A group of industry specialists has identified for the first time a macOS malware whose code clearly shows signs of having been generated using artificial intelligence tools . The discovery,...

Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

Featured Articles

Immagine del sito

innovation

NexPhone: Three operating systems in your pocket! The phone that challenges the very concept of a PC.

Redazione RHC - 23/01/2026

The question has been circulating for over ten years: can a smartphone really replace a computer? Over time, the industry has repeatedly attempted to provide a concrete answer, without ever reaching a definitive solution. From…

Immagine del sito

Cybercrime

BlueNoroff: The Hacker Group Revolutionizing Cybercrime

Redazione RHC - 23/01/2026

The BlueNoroff hacker group has long since transformed cybercrime into a high-tech business, with tens of millions of dollars, cryptocurrency assets, and entire financial ecosystems at stake. A report by Picus Security details the group’s…

Immagine del sito

Cybercrime

Nearly 2,000 bugs in 100 dating apps: How your data can be stolen

Redazione RHC - 23/01/2026

A study of 100 dating apps revealed a disturbing picture: nearly 2,000 vulnerabilities were detected, 17% of which were classified as critical. The analysis was conducted by AppSec Solutions. The study’s results were published by…

Immagine del sito

Cybercrime

MacSync: The macOS malware that empties your wallet… after weeks

Redazione RHC - 23/01/2026

A new malware campaign has emerged in the macOS world, one that relies not on sophisticated exploits, but on good old-fashioned social engineering. It’s powered by the MacSync malware, distributed using the ” malware-as-a-service ”…

Immagine del sito

Cybercrime

Larva-25012 Proxyjacking Campaign Targets South Korea with Notepad++ Malware

Redazione RHC - 22/01/2026

A sophisticated proxyjacking campaign is targeting systems in South Korea, attributed to the actor Larva-25012 , which distributes proxyware disguised as legitimate Notepad++ installers. The campaign demonstrates significant technical evolution, using process injection in explorer.exe…