Contact
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.
Home
Banner Mobile
Redhotcyber Banner Sito 970x120px Uscita 101125

Red Hot Cyber. The Cybersecurity Blog

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni | Cybercrime | 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, t...

    CISA alert: Exploit underway against VMware vCenter. Risk of RCE without authentication.
    Manuel Roccon | Cyber News | 25/01/2026

    The critical vulnerability recently added to the Cybersecurity and Infrastructure Security Agency (CISA) catalog of known exploited vulnerabilities (KEVs) affects the Broadcom VMware vCenter Server an...

    “I Stole 120,000 Bitcoins”: The Confession of the Bitfinex Hacker Who Now Wants to Defend Cyberspace
    Agostino Pellegrino | Cyber News | 25/01/2026

    The story ofIlya Lichtenstein, the hacker responsible for one of the largest cyber attacks ever carried out against cryptocurrencies, reads like an episode of a TV series, yet it is absolutely real. A...

    NoName057(16) hits Italy 487 times in the last 3 months: the DDoS wave does not stop
    Marcello Filacchioni | Cyber News | 24/01/2026

    Italy has confirmed itself as one of the main targets of the DDoS attack campaign carried out by the hacktivist group NoName057(16) . According to what was declared directly by the collective, our cou...

    BlueNoroff: The Hacker Group Revolutionizing Cybercrime
    Marcello Filacchioni | Cyber News | 23/01/2026

    The BlueNoroff hacker group has long since transformed cybercrime into a high-tech business, with tens of millions of dollars, cryptocurrency assets, and entire financial ecosystems at stake. A report...

    Nearly 2,000 bugs in 100 dating apps: How your data can be stolen
    Agostino Pellegrino | Cyber News | 23/01/2026

    A study of 100 dating apps revealed a disturbing picture: nearly 2,000 vulnerabilities were detected, 17% of which were classified as critical. The analysis was conducted by AppSec Solutions. The stud...

    MacSync: The macOS malware that empties your wallet… after weeks
    Massimiliano Brolli | Cyber News | 23/01/2026

    A new malware campaign has emerged in the macOS world, one that relies not on sophisticated exploits, but on good old-fashioned social engineering. It’s powered by the MacSync malware, distributed usi...

    PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms
    Sandro Sana | Cyber News | 22/01/2026

    For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using fake job interviews to attack companies in Europe, Asia, the Middl...

    Precedente Successivo

    Ultime news

    VMware ESXi VM Escape Exploit: Advanced Threats Revealed Cyber News

    VMware ESXi VM Escape Exploit: Advanced Threats Revealed

    A new report published by the Huntress Tactical Response Team documents a highly sophisticated intrusion detected in December 2025 ,...
    Silvia Felici - 8 January 2026
    Supply Chain Security: Protect Your Business from Cyber Threats Cyber News

    Supply Chain Security: Protect Your Business from Cyber Threats

    In an increasingly interconnected digital ecosystem, companies depend on networks of suppliers and partners to operate efficiently. However, this interdependence...
    Redazione RHC - 8 January 2026
    CVE-2026-21858: n8n Vulnerability Exposes Thousands of Servers to RCE Vulnerability

    CVE-2026-21858: n8n Vulnerability Exposes Thousands of Servers to RCE

    The vulnerability, identified as CVE-2026-21858, which we recently reported on, affects approximately 100,000 servers worldwide, threatening to expose proprietary API...
    Agostino Pellegrino - 8 January 2026
    Malware PHALT#BLYX Uses Social Engineering and MSBuild to Infect Systems Cyber News

    Malware PHALT#BLYX Uses Social Engineering and MSBuild to Infect Systems

    A cancellation message from Booking.com with a high penalty seems like a typical business practice for hotels and apartments. But...
    Redazione RHC - 7 January 2026
    Disable Windows 11 AI Features Easily with RemoveWindowsAI Tool Cyber News

    Disable Windows 11 AI Features Easily with RemoveWindowsAI Tool

    A new open-source script allows Windows 11 users to widely disable the operating system's built-in artificial intelligence features . The...
    Redazione RHC - 7 January 2026
    DevSecOps: Integrating Security into Your Development Process Cybercrime

    DevSecOps: Integrating Security into Your Development Process

    When it comes to application security, there's rarely a single problem. It's almost always a chain of small flaws, poor...
    Massimiliano Brolli - 7 January 2026
    « Precedente   Successivo »

    CVE-2025-47761: FortiClient VPN Zero-Day Exploit Lets Privilege Escalation

    The following analysis examines the attack vector for CVE-2025-47761 , a vulnerability found in the Fortips_74.sys kernel driver used by FortiClient VPN for Windows. The core of the vulnerability lies...

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Ukrainian Hacker Charged in Major Ransomware Attacks

    A Ukrainian man implicated in a series of ransomware attacks has been found guilty in the United States. These cybercrimes affected companies in several countries, including the United States, Canada,...

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    The Rise of Digital Walls: How National Sovereignty Threatens Global Internet

    As we always report on these pages, nations are pushing for the development of domestic software and hardware devices, that is, technologies developed within the nation that are more easily...

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Critical MongoDB Vulnerability Exposed: CVE-2025-14847

    A critical vulnerability has been identified in MongoDB, one of the most widely used NoSQL database platforms globally. This security flaw, tracked under CVE-2025-14847, allows attackers to extract sensitive data...

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Smart TV Spying: Major Brands Accused of Collecting User Data

    Texas Attorney General Ken Paxton has charged five major television manufacturers with illegally collecting user data using automatic content recognition (ACR) technology to record what owners watch. The charges concern...

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Phishing Campaigns Exploit File Sharing Services

    Researchers at Check Point, a pioneer and global leader in cybersecurity solutions, have discovered a phishing campaign in which attackers pose as file-sharing and electronic signature services to send financially-themed...

    - December 23rd, 2025

    Share on Facebook Share on LinkedIn Share on X

    RansomHouse Ransomware Upgraded: Enhanced Encryption Threat

    The group behind RansomHouse, one of the most notorious ransomware distribution services, has strengthened the technical capabilities of its attacks. According to experts, the cybercriminals have added an updated encryption...

    - December 22nd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Cyber Attacks on the Rise: Wiper Malware and Data Destruction in 2025

    According to BI.ZONE, by 2025, attackers will increasingly opt for total destruction of corporate infrastructure rather than encryption . This refers to scenarios in which, after penetrating a network, attackers...

    - December 22nd, 2025

    Share on Facebook Share on LinkedIn Share on X

    MS13-089 Ransomware: Double Extortion Without Encryption

    MS13-089 opens a leak site on the dark web, exposes the first data and adopts a double extortion strategy without encryption. A brand built on an old Microsoft ID For...

    - December 22nd, 2025

    Share on Facebook Share on LinkedIn Share on X

    San Francisco Power Outage Exposes Waymo Self-Driving Car Vulnerabilities

    A massive power outage in San Francisco has disrupted self-driving vehicle traffic. Waymo self-driving vehicles have been spotted on city streets, stopped at intersections with their emergency lights on. The...

    - December 22nd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

    Featured Articles

    Immagine del sitoCyberpolitics
    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici - 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are becoming an increasingly popular…

    Immagine del sitoCyber News
    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo - 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been exploited in cyberattacks. The issue, identified as…

    Immagine del sitoCyber News
    ServiceNow Under Attack: How an Email Can Open the Doors to Your Business
    Redazione RHC - 27/01/2026

    The recent discovery of a vulnerability in ServiceNow’s AI platform has shaken the cybersecurity industry. This flaw, characterized by an extremely high severity score, allowed unauthenticated attackers to impersonate any corporate user. To launch the…

    Immagine del sitoCybercrime
    149 Million Accounts Exposed: The Database No One Should Have Seen
    Redazione RHC - 26/01/2026

    A recent leak revealed 149 million logins and passwords exposed online , including accounts for financial services, social media, gaming, and dating sites. The discovery was made by researcher Jeremiah Fowler and shared with ExpressVPN.…

    Immagine del sitoCybercrime
    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni - 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, transforming each byte…