Cristian Luțic
Cristian Luțic is a cybersecurity professional and Editor-in-Chief of iSec.News, with experience in security enablement, risk analysis, and vulnerability reporting. As Editor-in-Chief, he is responsible for editorial standards, source verification, and publication oversight at iSec News.
From professional sports to cybersecurity, his career path may have been unconventional, but it has been driven by the same core values: discipline, perseverance, and a passion for doing meaningful, impactful work.
iSec.News Motto: “Only news, only information security and privacy news. No fluff.”
-
Critical Amazon ECS Vulnerability Exposed: Researchers Present ECScape Attack Method
A critical vulnerability in Amazon Elastic Container Service (ECS) has been discovered, enabling attackers to exploit an ‘end-to-end privilege escalation chain.’ Dubbed ECScape by researchers, the attack could allow malicious containers to gain higher privileges and access sensitive data within cloud environments.
-
Google Confirms Data Breach Linked to Ongoing Salesforce Attacks
Google has confirmed that it suffered a data breach linked to the ShinyHunters extortion group, amidst an ongoing series of Salesforce data theft attacks that have implicated multiple high-profile companies.
-
Thai Hospital Fined for Using Patient Records as Snack Bags
Thailand’s Personal Data Protection Committee has fined a private hospital 1.2 million baht for using patient files as snack bags, while also reporting a significant data breach by a state agency affecting over 200,000 citizens.
-
CISA Adds D-Link Wi-Fi Camera Vulnerabilities to Known Exploited Catalog Amid Active Threats
CISA has added three vulnerabilities affecting D-Link Wi-Fi cameras and video recorders to its KEV catalog amid warnings of active exploitation. Users are urged to take action as fixes for some issues have already been released.
-
Pandora Confirms Customer Data Breach Amid Cyber Attack
Pandora has confirmed a cyber attack that compromised certain customer data via a third-party vendor. While no financial information was accessed, exposed details include names and email addresses. Experts warn of potential phishing scams targeting affected customers. The company has since reinforced its security measures and advised customers to remain vigilant against suspicious communications.
-
Adobe Issues Critical Updates to Address Zero-Day Vulnerabilities in AEM Forms
Adobe has released emergency updates to address critical zero-day vulnerabilities in AEM Forms after researchers revealed proof-of-concept exploit chains that could lead to remote code execution.
-
Serious Security Vulnerabilities Found in Over 100 Dell Laptop Models
Cisco has identified serious vulnerabilities in over 100 Dell laptop models, impacting millions of devices worldwide. These flaws, which can allow attackers to control devices and access sensitive data, necessitate immediate firmware updates from affected users.
-
Google Addresses Critical Vulnerabilities in Android with August Security Updates
Google has released crucial security updates for Android, addressing multiple vulnerabilities linked to Qualcomm chipsets, including serious flaws that have been flagged as actively exploited.
-
Cisco Reveals Data Breach Affecting User Accounts Amid Vishing Attack
Cisco Systems has reported a data breach involving user accounts due to a voice phishing incident. Basic profile information was compromised, but the company asserts that no sensitive data was affected. Cisco is taking measures to strengthen security following the incident.
-
Chanel Faces Data Breach Amid Ongoing Salesforce Security Threats
Chanel has confirmed a data breach impacting U.S. customers, linked to a series of ongoing Salesforce data theft attacks. The breach has raised concerns about security practices within the fashion industry as companies increasingly fall prey to sophisticated cyber threats.
