Cristian Luțic
Cristian Luțic is a cybersecurity professional and Editor-in-Chief of iSec.News, with experience in security enablement, risk analysis, and vulnerability reporting. As Editor-in-Chief, he is responsible for editorial standards, source verification, and publication oversight at iSec News.
From professional sports to cybersecurity, his career path may have been unconventional, but it has been driven by the same core values: discipline, perseverance, and a passion for doing meaningful, impactful work.
iSec.News Motto: “Only news, only information security and privacy news. No fluff.”
-
Telefónica Data Breach Allegations: Hacker Claims Extensive Data Leak
A hacker, known as ‘Rey,’ claims to have leaked 106 GB of data from Telefónica, asserting that the breach occurred due to a misconfigured JIRA server. Despite the claims, Telefónica has yet to acknowledge the incident publicly.
-
Cisco Issues Urgent Update to Address Critical Vulnerability in Unified Communications Manager
Cisco has issued an urgent security alert regarding a critical vulnerability in its Unified Communications Manager systems, urging users to upgrade to new software updates to prevent potential exploitation.
-
Massive Phishing Scam Targets Online Shoppers Worldwide with Fake E-commerce Sites
A significant phishing scam originating from China has created numerous fake e-commerce websites that impersonate well-known brands, aiming to steal sensitive financial information from online shoppers worldwide. Cybersecurity firm Silent Push exposes this operation, urging consumers to be cautious and aware of the ongoing threat.
-
Major Mobile Ad Fraud Operation IconAds Discovered
The IconAds mobile ad fraud operation, involving 352 Android apps, has been disrupted, according to HUMAN. The malicious apps generated 1.2 billion daily bid requests, primarily targeting users in Brazil, Mexico, and the US, before their removal from the Play Store.
-
French Cybersecurity Agency Warns of Chinese Hackers Exploiting Ivanti CSA Vulnerabilities
The French cybersecurity agency has revealed that a Chinese hacking group exploited vulnerabilities in Ivanti’s Cloud Services Appliance, impacting various sectors in France. This operation marks a significant escalation in cyber threats aimed at critical infrastructure.
-
Russian APT Gamaredon Intensifies Phishing Campaigns Against Ukraine
Gamaredon, a Russia-aligned APT, has intensified its spear-phishing attacks on Ukrainian government institutions, revealing a significant increase in sophistication and employing new stealth capabilities in its operations.
-
North Korean Hackers Target Web3 and Crypto Businesses with Nim-based Malware
North Korean hackers are increasingly targeting Web3 and cryptocurrency sectors with sophisticated Nim-based malware, employing advanced tactics including social engineering and remote process injection techniques to extract sensitive information from compromised systems.
-
Cisco Addresses Critical Security Vulnerability in Unified Communications Manager
Cisco has released updates to mitigate a serious security vulnerability in its Unified Communications Manager that allowed for unauthorized remote access through a hardcoded backdoor account.
-
Security Flaw in Forminator Plugin Puts Over 600,000 WordPress Sites at Risk
The Forminator plugin for WordPress, used on over 600,000 sites, has a high-severity vulnerability (CVE-2025-6463) that could allow attackers to execute arbitrary file deletions, potentially leading to complete site takeovers. Users are urged to update to the latest version or disable the plugin immediately to avoid exploitation.
-
Verizon and T-Mobile Deny Data Breaches amid Claims of Stolen User Records
Verizon and T-Mobile US deny recent data breaches despite claims by a hacker selling sensitive customer information. The allegations involve millions of personal records being offered online, prompting both companies to assure customers that the data is not current. However, users remain cautious due to each company’s history with data security.
