Contact
Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Home
Banner Ransomfeed 970x120 1
    Supply Chain Attack: How Notepad++ Was Compromised via CVE-2025-15556
    Manuel Roccon | Cybercrime | 04/02/2026

    In cybersecurity, we often focus on finding complex bugs in source code, ignoring the fact that end-user trust is built on a much simpler foundation: a download link. The Notepad++ incident, now class...

    Microsoft Office under attack: the bug needs to be patched to prevent Russian espionage.
    Bajram Zeqiri | Cyber News | 03/02/2026

    In recent days, APT28 , a well-known Russian-linked hacker group, has intensified its attacks by exploiting a vulnerability in Microsoft Office. The flaw, classified as CVE-2026-21509, was disclosed b...

    Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos
    Silvia Felici | Cyber News | 01/02/2026

    For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

    The world’s first humanoid robot store has opened in China. Will we be ready?
    Carolina Vivianti | innovation | 30/01/2026

    At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

    Douglas Engelbart was born today: the man who saw and invented the digital future.
    Massimiliano Brolli | Culture | 30/01/2026

    Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

    WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).
    Silvia Felici | Cyber News | 29/01/2026

    WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    Precedente Successivo

    Latest news

    Cyber Incident Management in the NIS2 Era Cybercrime

    Cyber Incident Management in the NIS2 Era

    The NIS 2 Decree (Legislative Decree 138/2024), effective October 16, 2024, implements the principles of the European NIS2 Directive, laying...
    Giancarlo Di Lieto - October 30, 2025
    Tasting the Exploit: HackerHood tests Microsoft WSUS CVE-2025-59287 Exploit Cybercrime

    Tasting the Exploit: HackerHood tests Microsoft WSUS CVE-2025-59287 Exploit

    The cybersecurity landscape was recently rocked by the discovery of a critical Remote Code Execution (RCE) vulnerability in Microsoft’s Windows...
    Manuel Roccon - October 29, 2025
    183 million Gmail accounts hacked! But it was just a hoax Cyber News

    183 million Gmail accounts hacked! But it was just a hoax

    For the second time in recent months, Google has been forced to deny reports of a massive Gmail data breach...
    Sandro Sana - October 29, 2025
    Microsoft acquires 27% of OpenAI for $135 billion Cyber News

    Microsoft acquires 27% of OpenAI for $135 billion

    After nearly a year of negotiations with its longtime backer Microsoft, OpenAI has granted the latter a 27% stake ....
    Redazione RHC - October 29, 2025
    Malware alert: Critical WordPress plugin vulnerabilities actively exploited Vulnerability

    Malware alert: Critical WordPress plugin vulnerabilities actively exploited

    Wordfence is raising the alarm about a large-scale malware campaign in which attackers are exploiting critical vulnerabilities in the popular...
    Agostino Pellegrino - October 29, 2025
    ClayRat: The spyware that targets Android users with self-propagation Cyber News

    ClayRat: The spyware that targets Android users with self-propagation

    The ClayRat spyware campaign is expanding rapidly and increasingly targeting Android users. According to Zimperium, the malware is actively spreading...
    Bajram Zeqiri - October 29, 2025
    « Previous   Next »

    38 million Italian phone numbers for sale on the dark web. It’s smishing!

    Seven out of ten Italians have their phone numbers included in this database. But what does it mean to have such a large number of phone numbers concentrated within a...

    - September 6th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Apitor, the first robot that helps children do their homework and the whistleblower for China

    The U.S. Department of Justice has filed a lawsuit against Apitor Technology, accusing it of secretly collecting children's location data through a Chinese partner without their parents' knowledge or consent....

    - September 6th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Hackable restaurant robots could serve sushi… at the attacker’s home.

    An independent security specialist, known by the nickname BobDaHacker, discovered security flaws in Pudu Robotics (the world's leading provider of commercial service robots). The vulnerabilities allowed attackers to redirect the...

    - September 6th, 2025

    Share on Facebook Share on LinkedIn Share on X

    LECS powered by Cyber Evolution: la prima black box NDR completamente Made in Italy

    In the current cybersecurity landscape, threats are moving ever faster and more sophisticated. Traditional defense tools are no longer sufficient to ensure complete visibility, especially when the attack leaves no...

    - September 6th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Figure 02, the robot that loads the dishwasher with precision

    California-based company Figure has unveiled another milestone for its humanoid Figure 02: the robot loaded a dishwasher with high precision using the versatile Helix model, based on the Vision-Language-Action (VLA)...

    - September 5th, 2025

    Share on Facebook Share on LinkedIn Share on X

    If Flash is dead, here’s the SVG Assassin! Phishing 2.0 is in high definition.

    Cybercriminals have launched a new wave of attacks using SVG files to distribute phishing pages. Experts at VirusTotal have reported that attackers are impersonating the Colombian prosecutor's office, distributing email...

    - September 5th, 2025

    Share on Facebook Share on LinkedIn Share on X

    The Dark Side of Windows Drivers: How to Steal Data While Ignoring EDR

    A recent study conducted by Workday's Offensive Security team highlighted a vulnerability in Windows drivers that effectively bypasses Endpoint Detection and Response (EDR) tools. This technique exploits direct disk reading,...

    - September 5th, 2025

    Share on Facebook Share on LinkedIn Share on X

    GhostRedirector: The Black SEO Redirect Campaign That Manipulates Search Engines

    A cybercriminal group, dubbed GhostRedirector by ESET researchers and linked to the Chinese ecosystem, has quietly deployed a global search engine manipulation scheme based on hacked Windows hosts. According to...

    - September 5th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Attackers are using Velociraptor for cyberattacks. Rapid7 is aware

    Sophos security specialists have drawn attention to a cyberattack in which unknown attackers used the open-source forensic tool Velociraptor to monitor endpoints. "In this incident, attackers used a tool to...

    - September 5th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Underwater warfare is upon us! Will Chinese cable cutters pose a global threat?

    The new cable cutter, developed by the China Shipbuilding Research Center, is designed for use on advanced submarines such as the Fengdou and Haidou series. The device is capable of...

    - September 5th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE