Contact
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.
Home
UtiliaCS 320x100
LECS 970x120 1

Red Hot Cyber – News and insights on cybercrime and cybersecurity

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni | Cybercrime | 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, t...

    CISA alert: Exploit underway against VMware vCenter. Risk of RCE without authentication.
    Manuel Roccon | Cyber News | 25/01/2026

    The critical vulnerability recently added to the Cybersecurity and Infrastructure Security Agency (CISA) catalog of known exploited vulnerabilities (KEVs) affects the Broadcom VMware vCenter Server an...

    “I Stole 120,000 Bitcoins”: The Confession of the Bitfinex Hacker Who Now Wants to Defend Cyberspace
    Agostino Pellegrino | Cyber News | 25/01/2026

    The story ofIlya Lichtenstein, the hacker responsible for one of the largest cyber attacks ever carried out against cryptocurrencies, reads like an episode of a TV series, yet it is absolutely real. A...

    NoName057(16) hits Italy 487 times in the last 3 months: the DDoS wave does not stop
    Marcello Filacchioni | Cyber News | 24/01/2026

    Italy has confirmed itself as one of the main targets of the DDoS attack campaign carried out by the hacktivist group NoName057(16) . According to what was declared directly by the collective, our cou...

    BlueNoroff: The Hacker Group Revolutionizing Cybercrime
    Marcello Filacchioni | Cyber News | 23/01/2026

    The BlueNoroff hacker group has long since transformed cybercrime into a high-tech business, with tens of millions of dollars, cryptocurrency assets, and entire financial ecosystems at stake. A report...

    Nearly 2,000 bugs in 100 dating apps: How your data can be stolen
    Agostino Pellegrino | Cyber News | 23/01/2026

    A study of 100 dating apps revealed a disturbing picture: nearly 2,000 vulnerabilities were detected, 17% of which were classified as critical. The analysis was conducted by AppSec Solutions. The stud...

    MacSync: The macOS malware that empties your wallet… after weeks
    Massimiliano Brolli | Cyber News | 23/01/2026

    A new malware campaign has emerged in the macOS world, one that relies not on sophisticated exploits, but on good old-fashioned social engineering. It’s powered by the MacSync malware, distributed usi...

    Precedente Successivo

    Ultime news

    WhatsApp: all it takes is a phone number to know when you sleep, go out, or come home Cyber News

    WhatsApp: all it takes is a phone number to know when you sleep, go out, or come home

    A tool has been released that allows for the discreet monitoring of WhatsApp and Signal user activity using just a...
    Redazione RHC - 14 December 2025
    Cyber Geopolitics: How Tech Becomes a Global Battleground Cybercrime

    Cyber Geopolitics: How Tech Becomes a Global Battleground

    Over the past two years, cyber has ceased to be a " technical " dimension of the conflict and has...
    Roberto Villani - 14 December 2025
    SOAP Vulnerability in .NET Framework Allows Remote Code Execution Vulnerability

    SOAP Vulnerability in .NET Framework Allows Remote Code Execution

    Security researchers have discovered a vulnerability in .NET that could affect several enterprise products and lead to remote code execution....
    Agostino Pellegrino - 14 December 2025
    CVE-2025-55182 React Server Components Vulnerability Exploited Cyber News

    CVE-2025-55182 React Server Components Vulnerability Exploited

    A recent report from the Google Threat Intelligence Group (GTIG) illustrates the chaotic results of this information dissemination, highlighting how...
    Marcello Filacchioni - 13 December 2025
    Top 25 Software Vulnerabilities 2025: MITRE CWE Ranking and Security Tips Cyber News

    Top 25 Software Vulnerabilities 2025: MITRE CWE Ranking and Security Tips

    MITRE has released its ranking of the 25 most dangerous software vulnerabilities predicted for 2025, based on data collected through...
    Redazione RHC - 13 December 2025
    The Future of Work: 4-Day Week with AI and Tech Advances Cyber News

    The Future of Work: 4-Day Week with AI and Tech Advances

    The prospect of a four-day workweek, with a resulting three-day long weekend, may not be far off. This is according...
    Redazione RHC - 13 December 2025
    « Precedente   Successivo »

    “We Want to Hack You Again!” NSO Group Rejects WhatsApp’s Pegasus Lawsuit

    Israeli company NSO Group has appealed a California federal court ruling that bars it from using WhatsApp's infrastructure to distribute its Pegasus surveillance software. The case, which has been ongoing...

    - November 22nd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Oracle under attack: Pre-auth RCE vulnerability discovered that compromises entire systems

    A vulnerability, designated CVE-2025-61757, was made public by Searchlight Cyber last Thursday. Company researchers discovered the issue and notified Oracle, which led to its disclosure. Oracle fixed CVE-2025-61757 with the...

    - November 22nd, 2025

    Share on Facebook Share on LinkedIn Share on X

    CrowdStrike Insider Fired for Providing Sensitive Data to Criminal Hackers

    In recent months, the insider problem has become increasingly important for large companies , and one recent episode involved CrowdStrike. The cybersecurity firm has in fact removed an employee believed...

    - November 22nd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Sysmon will finally be integrated into Windows 11 and Windows Server 2025 in 2026

    Microsoft has announced that it will integrate the popular Sysmon tool directly into Windows 11 and Windows Server 2025 in 2026. The announcement was made by Sysinternals creator Mark Russinovich....

    - November 22nd, 2025

    Share on Facebook Share on LinkedIn Share on X

    Sneaky2FA: The phishing scam that steals credentials with browser-in-the-browser attacks

    Push Security specialists have noticed that the Sneaky2FA phishing platform now supports browser-in-the-browser attacks, which allow the creation of fake login windows and the theft of credentials and sessions. Sneaky2FA...

    - November 22nd, 2025

    Share on Facebook Share on LinkedIn Share on X

    TamperedChef: Malware via Fake App Installers

    The large-scale TamperedChef campaign is once again attracting the attention of specialists, as attackers continue to distribute malware via fake installers of popular applications. This scam, disguised as legitimate software,...

    - November 21st, 2025

    Share on Facebook Share on LinkedIn Share on X

    Whoever took down Cloudflare during the outage put their infrastructure at risk

    A major outage in Cloudflare's infrastructure has unexpectedly tested the robustness of the cloud and its security systems for many businesses. On November 18, service outages caused websites around the...

    - November 21st, 2025

    Share on Facebook Share on LinkedIn Share on X

    Critical Vulnerability in Azure Bastion Scores 10! When RDP and SSH in the Cloud Are Checkmated

    An authentication bypass vulnerability has been discovered in Azure Bastion , Microsoft's managed service that enables secure RDP and SSH connections to virtual machines in Azure without directly exposing them...

    - November 21st, 2025

    Share on Facebook Share on LinkedIn Share on X

    Risk averted for millions of Microsoft users! The critical vulnerability in Microsoft SharePoint 9.8

    Microsoft has disclosed a critical vulnerability in SharePoint Online (discovered by RHC through our ongoing monitoring of critical CVEs on our portal), identified as CVE‑2025‑59245 , with a CVSS v3.1...

    - November 21st, 2025

    Share on Facebook Share on LinkedIn Share on X

    Sturnus, the banking Trojan that intercepts WhatsApp, Telegram, and Signal messages

    ThreatFabric specialists have discovered a new banking Trojan, Sturnus . The malware is capable of intercepting messages from end-to-end encrypted messaging apps (Signal, WhatsApp, Telegram) and gaining full control over...

    - November 21st, 2025

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

    Featured Articles

    Immagine del sitoCybercrime
    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri - 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged after the domain associated…

    Immagine del sitoCyberpolitics
    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici - 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are becoming an increasingly popular…

    Immagine del sitoCyber News
    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo - 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been exploited in cyberattacks. The issue, identified as…

    Immagine del sitoCyber News
    ServiceNow Under Attack: How an Email Can Open the Doors to Your Business
    Redazione RHC - 27/01/2026

    The recent discovery of a vulnerability in ServiceNow’s AI platform has shaken the cybersecurity industry. This flaw, characterized by an extremely high severity score, allowed unauthenticated attackers to impersonate any corporate user. To launch the…

    Immagine del sitoCybercrime
    149 Million Accounts Exposed: The Database No One Should Have Seen
    Redazione RHC - 26/01/2026

    A recent leak revealed 149 million logins and passwords exposed online , including accounts for financial services, social media, gaming, and dating sites. The discovery was made by researcher Jeremiah Fowler and shared with ExpressVPN.…