Contact
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Cybersecurity is about sharing. Recognize the risk,
combat it, share your experiences, and encourage others
to do better than you.
Home
Heliaca 320x100 1
Cyber Offensive Fundamentals 970x120 V0.1

Red Hot Cyber – News and insights on cybercrime and cybersecurity

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    When Malware Hides in Videos! The PixelCode Technique Breaks the Rules
    Marcello Filacchioni | Cybercrime | 26/01/2026

    PixelCode began as a research project exploring a hidden technique for storing binary data within images or videos . Instead of leaving a plaintext executable, the file is converted into pixel data, t...

    CISA alert: Exploit underway against VMware vCenter. Risk of RCE without authentication.
    Manuel Roccon | Cyber News | 25/01/2026

    The critical vulnerability recently added to the Cybersecurity and Infrastructure Security Agency (CISA) catalog of known exploited vulnerabilities (KEVs) affects the Broadcom VMware vCenter Server an...

    “I Stole 120,000 Bitcoins”: The Confession of the Bitfinex Hacker Who Now Wants to Defend Cyberspace
    Agostino Pellegrino | Cyber News | 25/01/2026

    The story ofIlya Lichtenstein, the hacker responsible for one of the largest cyber attacks ever carried out against cryptocurrencies, reads like an episode of a TV series, yet it is absolutely real. A...

    NoName057(16) hits Italy 487 times in the last 3 months: the DDoS wave does not stop
    Marcello Filacchioni | Cyber News | 24/01/2026

    Italy has confirmed itself as one of the main targets of the DDoS attack campaign carried out by the hacktivist group NoName057(16) . According to what was declared directly by the collective, our cou...

    BlueNoroff: The Hacker Group Revolutionizing Cybercrime
    Marcello Filacchioni | Cyber News | 23/01/2026

    The BlueNoroff hacker group has long since transformed cybercrime into a high-tech business, with tens of millions of dollars, cryptocurrency assets, and entire financial ecosystems at stake. A report...

    Nearly 2,000 bugs in 100 dating apps: How your data can be stolen
    Agostino Pellegrino | Cyber News | 23/01/2026

    A study of 100 dating apps revealed a disturbing picture: nearly 2,000 vulnerabilities were detected, 17% of which were classified as critical. The analysis was conducted by AppSec Solutions. The stud...

    Precedente Successivo

    Ultime news

    How a simple Visual Studio Code file can become a backdoor for state-run hackers Cyber News

    How a simple Visual Studio Code file can become a backdoor for state-run hackers

    Security researchers have recently observed a worrying evolution in the offensive tactics attributed to North Korean-linked actors as part of...
    Redazione RHC - 26 January 2026
    Khaby Lame is selling the rights to his digital identity for $900 million. But there’s reason to think. Cyber News

    Khaby Lame is selling the rights to his digital identity for $900 million. But there’s reason to think.

    Khaby Lame, the world's most followed Italian creator and now a global social media icon, has taken a step that...
    Redazione RHC - 26 January 2026
    Microsoft Teams will know where you are: your geographic location will be inferred from your Wi-Fi Cyber News

    Microsoft Teams will know where you are: your geographic location will be inferred from your Wi-Fi

    Microsoft is preparing to introduce an update that will transform a small manual habit into a system-wide automation. Soon, Microsoft...
    Redazione RHC - 26 January 2026
    CISA alert: Exploit underway against VMware vCenter. Risk of RCE without authentication. Cyber News

    CISA alert: Exploit underway against VMware vCenter. Risk of RCE without authentication.

    The critical vulnerability recently added to the Cybersecurity and Infrastructure Security Agency (CISA) catalog of known exploited vulnerabilities (KEVs) affects...
    Manuel Roccon - 25 January 2026
    Linux 7.0 says goodbye to the HIPPI relic: a piece of supercomputing history has been eliminated. Cyber News

    Linux 7.0 says goodbye to the HIPPI relic: a piece of supercomputing history has been eliminated.

    The Linux kernel has long been a well-established reality, and while it still contains code for technologies no longer in...
    Silvia Felici - 25 January 2026
    The Grok scandal: 3 million sexually explicit images generated in 11 days Cyber News

    The Grok scandal: 3 million sexually explicit images generated in 11 days

    A recent study reveals that in just 11 days of processing, Grok produced approximately 3 million sexually explicit images. The...
    Agostino Pellegrino - 25 January 2026
    « Precedente   Successivo »

    Your MFA is no longer enough: Phishing kits bypass multi-factor authentication

    The amount of PhaaS kit has doubled since last year, according to an analysis by Barracuda Networks, placing increased pressure on security teams. Aggressive newcomers Whisper 2FA and GhostFrame introduced...

    - January 23rd, 2026

    Share on Facebook Share on LinkedIn Share on X

    Nearly 2,000 bugs in 100 dating apps: How your data can be stolen

    A study of 100 dating apps revealed a disturbing picture: nearly 2,000 vulnerabilities were detected, 17% of which were classified as critical. The analysis was conducted by AppSec Solutions. The...

    - January 23rd, 2026

    Share on Facebook Share on LinkedIn Share on X

    MacSync: The macOS malware that empties your wallet… after weeks

    A new malware campaign has emerged in the macOS world, one that relies not on sophisticated exploits, but on good old-fashioned social engineering. It's powered by the MacSync malware, distributed...

    - January 23rd, 2026

    Share on Facebook Share on LinkedIn Share on X

    He arrived in America with $200 and ended up in a reformatory: today he controls 90% of the world’s AI

    How three insiders with just $200 in their pockets reached a market capitalization of $5 trillion and created the company that powers over 90% of artificial intelligence. Kentucky, 1972. A...

    - January 23rd, 2026

    Share on Facebook Share on LinkedIn Share on X

    The Thin Red Line of Criminal Liability in Cybersecurity

    This article is the first in a series of three articles exploring the delicate relationship between cybersecurity professionals and the current regulatory framework. In this first installment, we will analyze...

    - January 23rd, 2026

    Share on Facebook Share on LinkedIn Share on X

    China Bans Western Cybersecurity Software, Cites Security Fears

    Chinese authorities have begun quietly eliminating Western solutions from corporate networks in the country. According to Reuters sources, Chinese companies have been advised to stop using cybersecurity software from dozens...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    Vulnerabilities discovered in Foxit PDF Editor, Epic Games Store, and MedDream PACS

    Recently, the Cisco Talos vulnerability research and discovery team identified a number of vulnerabilities in various software. Specifically, three vulnerabilities were discovered in the Foxit PDF Editor , one vulnerability...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    Larva-25012 Proxyjacking Campaign Targets South Korea with Notepad++ Malware

    A sophisticated proxyjacking campaign is targeting systems in South Korea, attributed to the actor Larva-25012 , which distributes proxyware disguised as legitimate Notepad++ installers. The campaign demonstrates significant technical evolution,...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    OpenAI API Logs Vulnerability Exposed: Data Exfiltration Risk

    Imagine your chatbot worked properly and didn't display a malicious response to the user. But a leak still occurred later, in the most unexpected place, when the developer opened the...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms

    For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using fake job interviews to attack companies in Europe, Asia, the...

    - January 22nd, 2026

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE

    Featured Articles

    Immagine del sitoCybercrime
    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri - 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious people have created a…

    Immagine del sitoCybercrime
    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri - 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged after the domain associated…

    Immagine del sitoCyberpolitics
    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici - 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are becoming an increasingly popular…

    Immagine del sitoCyber News
    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo - 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been exploited in cyberattacks. The issue, identified as…

    Immagine del sitoCyber News
    ServiceNow Under Attack: How an Email Can Open the Doors to Your Business
    Redazione RHC - 27/01/2026

    The recent discovery of a vulnerability in ServiceNow’s AI platform has shaken the cybersecurity industry. This flaw, characterized by an extremely high severity score, allowed unauthenticated attackers to impersonate any corporate user. To launch the…