Cristian Luțic
Cristian Luțic is a cybersecurity professional and Editor-in-Chief of iSec.News, with experience in security enablement, risk analysis, and vulnerability reporting. As Editor-in-Chief, he is responsible for editorial standards, source verification, and publication oversight at iSec News.
From professional sports to cybersecurity, his career path may have been unconventional, but it has been driven by the same core values: discipline, perseverance, and a passion for doing meaningful, impactful work.
iSec.News Motto: “Only news, only information security and privacy news. No fluff.”
-
New XDigo Malware Targets Eastern European Governments Using LNK Flaw
The XDigo malware, linked to the cyber espionage group XDSpy, has been identified as a prominent threat targeting Eastern European government agencies, exploiting a vulnerability within Windows shortcut files for its deployment.
-
Critical Vulnerability in WordPress Motors Theme Exploited by Hackers
Hackers are exploiting a significant vulnerability in the WordPress “Motors” theme, allowing them to take control of administrator accounts and jeopardize website security. The flaw, known as CVE-2025-4322, was flagged by Wordfence which reports extensive attacks targeting user accounts.
-
Google Enhances AI Security with Layered Defenses Against Prompt Injection Attacks
Google has taken significant steps to enhance the security of its generative AI systems by implementing layered defenses against indirect prompt injections, which pose a new cybersecurity risk. These measures include advanced filtering techniques and a proactive approach to preventing malicious user inputs.
-
Serious Vulnerability Found in Zyxel Devices Sparks Security Concerns
A serious vulnerability, CVE-2023-28771, affects Zyxel devices, prompting warnings from cybersecurity experts after a spike in exploit attempts was detected. Owners are urged to secure their devices against potential threats.
-
Nucor Confirms Data Breach as Cybersecurity Incident Unfolds
Nucor has confirmed that attackers behind a recent cybersecurity incident have stolen data from its network, prompting immediate actions to contain the breach and restore operations.
-
Russian Hackers Employ Advanced Social Engineering to Bypass Gmail’s Multi-Factor Authentication
A new campaign by Russian hackers has successfully bypassed Gmail’s multi-factor authentication, targeting academics and critics of Russia through sophisticated social engineering attacks, as reported by Google Threat Intelligence Group.
-
Cyber Attack on UK Retailers Marks & Spencer and Co-op Attributed to Scattered Spider Group
The recent cyber attacks targeting UK retailers Marks & Spencer and Co-op have been linked to the Scattered Spider cybercrime group, with financial impacts estimated at up to £440 million. The UK’s Cyber Monitoring Centre described the incidents as a single combined cyber event, prompting heightened concerns in the insurance sector as the group shifts…
-
Qilin Ransomware Group Introduces Legal Counsel for Victims Amid Surge in Activity
The Qilin ransomware group has introduced a ‘Call Lawyer’ feature to their affiliate panel, providing legal assistance to victims, aiming to increase the effectiveness of their ransom demands amid a rise in cyberattack activities.
-
Aflac Discloses Cyber Breach Amid Rising Attacks on Insurance Sector
Aflac has confirmed a security breach involving personal and health information amid a wider campaign targeting insurance companies across the U.S. The company is investigating the incident with external cybersecurity experts, signaling a growing trend of cyber threats against the insurance sector.
-
Surge in Android Malware: AntiDot Threats Compromise Thousands of Devices
Researchers have uncovered a significant surge in Android malware, particularly the AntiDot strain, which has compromised thousands of devices through sophisticated phishing campaigns and Malware-as-a-Service distribution.
