Contact
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.
Home
HackTheBox 320x100 1
Banner Ransomfeed 970x120 1

Red Hot Cyber. The Cybersecurity Blog

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni | Cybercrime | 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, t...

    CISA alert: Exploit underway against VMware vCenter. Risk of RCE without authentication.
    Manuel Roccon | Cyber News | 25/01/2026

    The critical vulnerability recently added to the Cybersecurity and Infrastructure Security Agency (CISA) catalog of known exploited vulnerabilities (KEVs) affects the Broadcom VMware vCenter Server an...

    “I Stole 120,000 Bitcoins”: The Confession of the Bitfinex Hacker Who Now Wants to Defend Cyberspace
    Agostino Pellegrino | Cyber News | 25/01/2026

    The story ofIlya Lichtenstein, the hacker responsible for one of the largest cyber attacks ever carried out against cryptocurrencies, reads like an episode of a TV series, yet it is absolutely real. A...

    NoName057(16) hits Italy 487 times in the last 3 months: the DDoS wave does not stop
    Marcello Filacchioni | Cyber News | 24/01/2026

    Italy has confirmed itself as one of the main targets of the DDoS attack campaign carried out by the hacktivist group NoName057(16) . According to what was declared directly by the collective, our cou...

    BlueNoroff: The Hacker Group Revolutionizing Cybercrime
    Marcello Filacchioni | Cyber News | 23/01/2026

    The BlueNoroff hacker group has long since transformed cybercrime into a high-tech business, with tens of millions of dollars, cryptocurrency assets, and entire financial ecosystems at stake. A report...

    Nearly 2,000 bugs in 100 dating apps: How your data can be stolen
    Agostino Pellegrino | Cyber News | 23/01/2026

    A study of 100 dating apps revealed a disturbing picture: nearly 2,000 vulnerabilities were detected, 17% of which were classified as critical. The analysis was conducted by AppSec Solutions. The stud...

    MacSync: The macOS malware that empties your wallet… after weeks
    Massimiliano Brolli | Cyber News | 23/01/2026

    A new malware campaign has emerged in the macOS world, one that relies not on sophisticated exploits, but on good old-fashioned social engineering. It’s powered by the MacSync malware, distributed usi...

    PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms
    Sandro Sana | Cyber News | 22/01/2026

    For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using fake job interviews to attack companies in Europe, Asia, the Middl...

    Precedente Successivo

    Ultime news

    OpenAI API Logs Vulnerability Exposed: Data Exfiltration Risk Cyber News

    OpenAI API Logs Vulnerability Exposed: Data Exfiltration Risk

    Imagine your chatbot worked properly and didn't display a malicious response to the user. But a leak still occurred later,...
    Redazione RHC - 22 January 2026
    PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms Cyber News

    PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms

    For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using...
    Sandro Sana - 22 January 2026
    KONNI Malware Targets Crypto Developers with AI-Powered Attacks Cyber News

    KONNI Malware Targets Crypto Developers with AI-Powered Attacks

    Check Point Research recently discovered a sophisticated phishing campaign orchestrated by KONNI , a threat group linked to North Korea...
    Stefano Gazzella - 22 January 2026
    LastPass Phishing Attack: Protect Your Master Password Now Cyber News

    LastPass Phishing Attack: Protect Your Master Password Now

    On January 21, 2026, LastPass warned its users about a new and active phishing campaign aimed at stealing customers' master...
    Redazione RHC - 22 January 2026
    Zoom Security Alert: Critical Vulnerability in Node MMR Devices Cyber News

    Zoom Security Alert: Critical Vulnerability in Node MMR Devices

    Zoom Video Communications has issued an urgent security advisory for a critical vulnerability (identified as CVE-2026-22844 ) affecting its enterprise...
    Silvia Felici - 22 January 2026
    LockBit 5.0 Ransomware: New Threats and Advanced Tactics Cybercrime

    LockBit 5.0 Ransomware: New Threats and Advanced Tactics

    The LockBit group, which many had quickly dismissed after high-profile failures and leaks, unexpectedly returned to the scene. In the...
    Pietro Melillo - 22 January 2026
    « Precedente   Successivo »

    Microsoft Patches Zero-Day NTFS Vulnerabilities in Windows 11 and Server

    Microsoft released a security update in January that addresses two serious zero-day vulnerabilities in the NTFS file system. The vulnerabilities affected more than thirty versions of desktop and server operating...

    - January 16th, 2026

    Share on Facebook Share on LinkedIn Share on X

    AVCheck Malware Service Shut Down: Dutch Man Arrested for Cybercrime

    Law enforcement has announced the arrest of a 33-year-old Dutch citizen on suspicion of operating the AVCheck platform, an online anti-malware testing service that was shut down last May during...

    - January 16th, 2026

    Share on Facebook Share on LinkedIn Share on X

    VoidLink Malware: Advanced Linux Framework Targets Cloud Infrastructures

    Check Point researchers have discovered a new Linux infection framework distinguished by its advanced modular architecture and wide range of features. The malware has been dubbed VoidLink . The framework...

    - January 16th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Microsoft Ends Support for Windows Server 2008: What It Means

    This week marked the end of an era: Microsoft finally ended support for Windows Server 2008 , the operating system based on Windows Vista. The server operating system, codenamed Longhorn...

    - January 16th, 2026

    Share on Facebook Share on LinkedIn Share on X

    The AI Energy Crisis: How Data Centers Are Reshaping US Power Costs

    The accelerated growth of artificial intelligence is bringing with it an increasingly obvious consequence : rising energy demand. This issue entered the US political debate forcefully on January 13, when...

    - January 15th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Microsoft Copilot Vulnerability Exposes User Data to Hackers

    A recently fixed vulnerability allowed attackers to exploit Microsoft Copilot Personal with a single click to steal sensitive user data. Using a phishing link, attackers were able to take control...

    - January 15th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Progress Software Patches LoadMaster, MOVEit WAF Vulnerabilities

    On January 12, 2026, Progress Software Corporation released patches that address two high-severity Command Injection vulnerabilities, which could allow remote attackers to execute malicious code on LoadMaster load balancers and...

    - January 15th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Fortinet FortiSIEM Vulnerability CVE-2025-64155: Critical Security Update

    A critical security flaw was recently patched by Fortinet through update releases, which significantly impacted FortiSIEM . An unauthenticated attacker could have exploited this weakness to execute arbitrary code on...

    - January 15th, 2026

    Share on Facebook Share on LinkedIn Share on X

    ARM: The Future of Low-Power Computing and AI

    Just look around and you'll almost certainly find a device nearby that uses a processor based on the same design: smartphones, smart speakers, TV remote controls, coffee machines, car components,...

    - January 15th, 2026

    Share on Facebook Share on LinkedIn Share on X

    24-Year-Old Hacker Breaches US Supreme Court Database

    Do you remember the 24-year-old hacker Carmelo Miano and the breaches of the Naples Prosecutor's Office's accounts and computer systems? It appears something similar happened in the United States, and...

    - January 14th, 2026

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

    Featured Articles

    Immagine del sitoCyberpolitics
    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici - 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are becoming an increasingly popular…

    Immagine del sitoCyber News
    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo - 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been exploited in cyberattacks. The issue, identified as…

    Immagine del sitoCyber News
    ServiceNow Under Attack: How an Email Can Open the Doors to Your Business
    Redazione RHC - 27/01/2026

    The recent discovery of a vulnerability in ServiceNow’s AI platform has shaken the cybersecurity industry. This flaw, characterized by an extremely high severity score, allowed unauthenticated attackers to impersonate any corporate user. To launch the…

    Immagine del sitoCybercrime
    149 Million Accounts Exposed: The Database No One Should Have Seen
    Redazione RHC - 26/01/2026

    A recent leak revealed 149 million logins and passwords exposed online , including accounts for financial services, social media, gaming, and dating sites. The discovery was made by researcher Jeremiah Fowler and shared with ExpressVPN.…

    Immagine del sitoCybercrime
    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni - 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, transforming each byte…