Contact
Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Home
Heliaca 970x120 1
    Supply Chain Attack: How Notepad++ Was Compromised via CVE-2025-15556
    Manuel Roccon | Cybercrime | 04/02/2026

    In cybersecurity, we often focus on finding complex bugs in source code, ignoring the fact that end-user trust is built on a much simpler foundation: a download link. The Notepad++ incident, now class...

    Microsoft Office under attack: the bug needs to be patched to prevent Russian espionage.
    Bajram Zeqiri | Cyber News | 03/02/2026

    In recent days, APT28 , a well-known Russian-linked hacker group, has intensified its attacks by exploiting a vulnerability in Microsoft Office. The flaw, classified as CVE-2026-21509, was disclosed b...

    Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos
    Silvia Felici | Cyber News | 01/02/2026

    For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

    The world’s first humanoid robot store has opened in China. Will we be ready?
    Carolina Vivianti | innovation | 30/01/2026

    At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

    Douglas Engelbart was born today: the man who saw and invented the digital future.
    Massimiliano Brolli | Culture | 30/01/2026

    Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

    WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).
    Silvia Felici | Cyber News | 29/01/2026

    WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    Precedente Successivo

    Latest news

    Attack Techniques: What is a Command and Control (C2) Server? Cyber News

    Attack Techniques: What is a Command and Control (C2) Server?

    Among the many strategies used by attackers, one of the most insidious is represented by Command and Control (C2) Servers....
    Sandro Sana - November 11, 2025
    New Penetration Testing Methods: Adversary Emulation and the Importance of a Non-Technological Approach to Corporate Security Culture

    New Penetration Testing Methods: Adversary Emulation and the Importance of a Non-Technological Approach to Corporate Security

    In the ever-evolving digital world, cybersecurity threats are becoming increasingly sophisticated and pervasive. Companies in every industry face a growing...
    Sandro Sana - November 11, 2025
    Cyber Incident Mitigation Guide: The First Steps Cybercrime

    Cyber Incident Mitigation Guide: The First Steps

    By definition, a security incident occurs when a computer system, network, or the data contained within them is compromised, breached,...
    Ricardo Nardini - November 11, 2025
    Let’s find out what cyber insurance is. It insures your online business, but not only that. Cyber News

    Let’s find out what cyber insurance is. It insures your online business, but not only that.

    The digital world is constantly evolving, and with the growth of online activity, protecting your business from potential cyber threats...
    Agostino Pellegrino - November 11, 2025
    Let’s find out what Business Impact Analysis (BIA) is Cyber News

    Let’s find out what Business Impact Analysis (BIA) is

    Business Impact Analysis (BIA) is a fundamental tool for ensuring business continuity. BIA helps organizations identify activities critical to their...
    Redazione RHC - November 11, 2025
    What is risk analysis in ICT Risk Management? Cyber News

    What is risk analysis in ICT Risk Management?

    Risk analysis is an important process in the context of ICT Risk Management as it allows us to evaluate the...
    Redazione RHC - November 11, 2025
    « Previous   Next »

    Blade Runner Already Predicted Deepfake! Cyber Lessons from Film Classics

    “ Art is a mirror that reflects the soul of the beholder.” This quote, which captures the essence of our experience with cinema, takes on crucial significance when discussing cybersecurity....

    - September 25th, 2025

    Share on Facebook Share on LinkedIn Share on X

    The freebie party is over! Open source infrastructure is at risk and needs funding.

    An open letter signed by major open source foundations has raised the alarm about the future of the infrastructure that supports modern software development. The Open Source Security Foundation (OpenSSF),...

    - September 25th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Zero-Day Vulnerabilities Found in Cisco IOS and IOS XE: Urgent Updates

    Cisco has disclosed a zero-day vulnerability, tracked as CVE-2025-20352, in its widely used IOS and IOS XE software; this vulnerability appears to be actively exploited. This vulnerability was initially identified...

    - September 25th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Artificial Intelligence: A Double-Edged Sword in Digital Security

    Artificial intelligence is increasingly being described as a double-edged sword, capable of offering enormous advantages but also opening new avenues for digital crime. During the " TRUST AICS - 2025"...

    - September 25th, 2025

    Share on Facebook Share on LinkedIn Share on X

    CrowdStrike: Cybersecurity Enters the Age of AI Agents

    At Fal.Con 2025, the annual conference that brings together thousands of cybersecurity experts from around the world, CrowdStrike made one thing clear: cyber defense is entering a new era, that...

    - September 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Violent social media and video games: the new ticking time bomb for teens.

    The uncontrolled use of social media and violent video games poses a growing threat to adolescents at a crucial stage of their development. Child and adolescent health experts warn that...

    - September 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    TikTok, the app setting the US ablaze: billion-dollar deal for total control

    TikTok's fate in the United States is now inextricably linked to political negotiations. The White House has announced that the service's recommendation algorithm will be replicated and adapted solely based...

    - September 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Supply Chain: The blockade of European airports raises concerns about an increasingly critical issue.

    On September 20, 2025, a cyberattack hit three of Europe's major airports: London Heathrow, Brussels, and Berlin. The digital systems governing check-in and baggage handling were rendered unusable, resulting in...

    - September 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Dedigitalization: Japanese city of Toyoda restricts smartphone use

    In the Japanese city of Toyoda (Aichi Prefecture), city council members approved a draft ordinance limiting smartphone use during leisure time . The document establishes a daily limit of two...

    - September 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    ShadowV2: New MaaS botnet for DDoS attacks uses containers

    Amid growing criminal activity, Darktrace has uncovered a new campaign using the ShadowV2 botnet. Researchers detected malicious activity on June 24, 2025, when their honeypots were activated. This system relies...

    - September 24th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE