Cristian Luțic
Cristian Luțic is a cybersecurity professional and Editor-in-Chief of iSec.News, with experience in security enablement, risk analysis, and vulnerability reporting. As Editor-in-Chief, he is responsible for editorial standards, source verification, and publication oversight at iSec News.
From professional sports to cybersecurity, his career path may have been unconventional, but it has been driven by the same core values: discipline, perseverance, and a passion for doing meaningful, impactful work.
iSec.News Motto: “Only news, only information security and privacy news. No fluff.”
-
Critical Flaw in Veeam Backup Software Prompt Workforce Update
Veeam Software has issued critical patches for vulnerabilities in its Backup & Replication software, including a major flaw allowing remote code execution. Security experts emphasize the urgency for users to update to safeguard against potential cyber threats.
-
Scania Confirms Cybersecurity Breach Involving Compromised Credentials and Extortion Attempt
Scania has confirmed a cybersecurity breach that involved the theft of insurance claim documents using compromised credentials. The attack was followed by extortion attempts, with the attackers threatening to leak the data unless demands were met.
-
Cyberattack Disrupts Iranian State-Owned Bank Amid Escalating Tensions
A cyberattack by the group Predatory Sparrow has taken Bank Sepah offline, disrupting services amid heightened military tensions between Iran and Israel. The attack underscores the rising prominence of cyber warfare in geopolitical conflicts.
-
Security Flaw in LangChain’s LangSmith Exposes Users to Data Theft
A security flaw in LangChain’s LangSmith platform has been revealed, allowing hackers to potentially intercept sensitive user data. The vulnerability has now been patched, but researchers caution about the risks associated with such cyber threats.
-
Fraudulent Instagram Ads Target Canadian Bank Customers with AI Deepfakes
Fraudulent Instagram ads impersonating financial institutions BMO and EQ Bank are targeting Canadian consumers with phishing scams involving AI deepfakes. These ads mislead users into providing personal information, prompting a response from affected banks and Meta’s commitment to investigate and remove fraudulent content.
-
New Flodrix Botnet Exploits Vulnerabilities in Langflow Framework
A new botnet campaign exploiting vulnerabilities in the Langflow framework has emerged, allowing attackers to deploy the Flodrix malware. Cybersecurity experts emphasize the urgency of addressing this critical security flaw.
-
CISA Warns of Critical Vulnerability in TP-Link Routers Amid Active Exploitation
CISA has identified a critical vulnerability in TP-Link routers, urging users to take immediate action as evidence of active exploitation emerges. The agency’s guidelines are designed to mitigate the risks associated with this command injection vulnerability, affecting multiple router models.
-
Cyber Crime Crew Scattered Spider Targets US Insurance Companies Amid Ransomware Surge
A rise in ransomware attacks targeting US insurance companies has been attributed to the cybercrime group Scattered Spider, prompting warnings from Google about the necessity for heightened security measures within the industry.
-
Infoblox Exposes Links Between Cybercrime Groups and AdTech Firms
Infoblox Threat Intel has revealed a hidden alliance between cybercrime group VexTrio and legitimate AdTech companies, indicating a complex web of relationships in the digital landscape that warrants ongoing scrutiny.
-
Critical Vulnerability Discovered in ASUS Armoury Crate Software
A serious vulnerability in ASUS Armoury Crate software could allow attackers to achieve SYSTEM-level privileges on Windows machines, according to a report detailing the flaw. Users are urged to update their applications to mitigate potential risks.
