Contact
Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Home
970x20 Itcentric
    Supply Chain Attack: How Notepad++ Was Compromised via CVE-2025-15556
    Manuel Roccon | Cybercrime | 04/02/2026

    In cybersecurity, we often focus on finding complex bugs in source code, ignoring the fact that end-user trust is built on a much simpler foundation: a download link. The Notepad++ incident, now class...

    Microsoft Office under attack: the bug needs to be patched to prevent Russian espionage.
    Bajram Zeqiri | Cyber News | 03/02/2026

    In recent days, APT28 , a well-known Russian-linked hacker group, has intensified its attacks by exploiting a vulnerability in Microsoft Office. The flaw, classified as CVE-2026-21509, was disclosed b...

    Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos
    Silvia Felici | Cyber News | 01/02/2026

    For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

    The world’s first humanoid robot store has opened in China. Will we be ready?
    Carolina Vivianti | innovation | 30/01/2026

    At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

    Douglas Engelbart was born today: the man who saw and invented the digital future.
    Massimiliano Brolli | Culture | 30/01/2026

    Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

    WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).
    Silvia Felici | Cyber News | 29/01/2026

    WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    Precedente Successivo

    Latest news

    The KING of RaidForums remains in limbo. The battle between the US and Portugal over his extradition continues. Cyber News

    The KING of RaidForums remains in limbo. The battle between the US and Portugal over his extradition continues.

    The High Court in London has overturned the decision to extradite Portuguese citizen Diogo Santos Coelho to the United States....
    Bajram Zeqiri - September 18, 2025
    Google Chrome: Urgent patch for exploited 0day. Critical vulnerabilities fixed. Cyber News

    Google Chrome: Urgent patch for exploited 0day. Critical vulnerabilities fixed.

    Google has taken immediate security action for Chrome browser users globally, targeting four critical vulnerabilities, one of which, a zero-day...
    Massimiliano Brolli - September 18, 2025
    Phishing with style! Cybercriminals attach superhero GIFs to malware. Cyber News

    Phishing with style! Cybercriminals attach superhero GIFs to malware.

    F6 analysts have published a study on a new phishing campaign active from spring 2025. The group, dubbed ComicForm, sent...
    Agostino Pellegrino - September 18, 2025
    Will this latest article “against” ChatControl be absolutely useless? Cybercrime

    Will this latest article “against” ChatControl be absolutely useless?

    We had already discussed the proposed "ChatControl" regulation almost two years ago, but given the roadmap currently underway, we find...
    Stefano Gazzella - September 18, 2025
    Azure Functions in the Spotlight: Legitimate Libraries Used for DLL Sideloading Cyber News

    Azure Functions in the Spotlight: Legitimate Libraries Used for DLL Sideloading

    A malicious version of the ISO image named Servicenow-BNM-Verify.iso has been identified on VirusTotal, reported as originating from Malaysia, with...
    Redazione RHC - September 18, 2025
    Linux Hit by Sindoor Dropper: Highly Obfuscated Infection Chain Cyber News

    Linux Hit by Sindoor Dropper: Highly Obfuscated Infection Chain

    Linux systems are being targeted by a recent malware campaign, known as "Sindoor Dropper," which uses advanced spear-phishing techniques and...
    Redazione RHC - September 18, 2025
    « Previous   Next »

    RansomHub criminal hackers claim cyber attack on Coca Cola

    Today, the RansomHub gang of cybercriminals claimed on their Data Leak Site (DLS) an IT attack on Coca Cola. We still do not know whether this cyber attack actually affected...

    - June 27th, 2024

    Share on Facebook Share on LinkedIn Share on X

    Threat Actor “DragonForce” Seeks New Partners 

    A recent post on a dark web forum reveals that a cybercriminal group known as "DragonForce" is actively seeking new partners to join their Ransomware-as-a-Service (RaaS) operation. This recruitment drive...

    - June 27th, 2024

    Share on Facebook Share on LinkedIn Share on X

    Cyber ​​catastrophe in sight? The new Bug on MOVEit has an Online PoC Exploit

    In the realm of cybersecurity, vulnerabilities constantly represent a significant risk for businesses and institutions. Many system administrators may recall CVE-2023-34362 from last year, a catastrophic vulnerability in Progress MOVEit...

    - June 27th, 2024

    Share on Facebook Share on LinkedIn Share on X

    UNZIPPED DATA – LEVI STRAUSS COMPROMISED ACCOUNTS

    The legendary Jeans retailer Levi Strauss & Co. identified a significant data breach that affected over 72,000 customers. The incident was discovered on June 13th, 2024 and it was the...

    - June 26th, 2024

    Share on Facebook Share on LinkedIn Share on X
    lockbit

    LockBit: The Bluff of Double Extortion Against the Federal Reserve

    In recent years, the cybersecurity landscape has been dominated by the growing threat posed by ransomware groups. Among these, LockBit has emerged as one of the most notorious and feared....

    - June 26th, 2024

    Share on Facebook Share on LinkedIn Share on X

    Xehook Stealer: The Rise and Sale of a Formidable Stealer Malware

    Introduction Xehook Stealer is a sophisticated malware targeting Windows operating systems, first discovered in January 2024. Within a year, Xehook has rapidly gained notoriety for its advanced data collection capabilities...

    - June 26th, 2024

    Share on Facebook Share on LinkedIn Share on X

    WordPress: Five Plugins Found with Malicious Code

    On June 24, 2024, Wordfence revealed a supply chain attack on WordPress plugins, leading to the compromise of five plugins with malicious code. The affected plugins are: Social Warfare (versions...

    - June 25th, 2024

    Share on Facebook Share on LinkedIn Share on X

    Julian Assange Free! Freedom Reclaimed After Five Years of Detention

    London, June 25, 2024 - Julian Assange, the founder of WikiLeaks, was released yesterday from the maximum-security Belmarsh prison after spending 1901 days in detention. The news was announced by...

    - June 25th, 2024

    Share on Facebook Share on LinkedIn Share on X

    BlackByte: The Return of the Gang after a few months of inactivity

    In recent years, the cybersecurity landscape has been marked by ongoing ransomware attacks , with criminal groups constantly evolving to evade defenses. One such group, known as BlackByte, recently returned to action...

    - June 24th, 2024

    Share on Facebook Share on LinkedIn Share on X

    Lockbit 3.0 Claims Attack on Federal Reserve: 33 Terabytes of Sensitive Data Allegedly Compromised

    In a significant escalation within the cybersecurity realm, the notorious ransomware group Lockbit 3.0 has claimed responsibility for a cyberattack targeting the Federal Reserve of the United States. The declaration...

    - June 24th, 2024

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE