Cristian Luțic
Cristian Luțic is a cybersecurity professional and Editor-in-Chief of iSec.News, with experience in security enablement, risk analysis, and vulnerability reporting. As Editor-in-Chief, he is responsible for editorial standards, source verification, and publication oversight at iSec News.
From professional sports to cybersecurity, his career path may have been unconventional, but it has been driven by the same core values: discipline, perseverance, and a passion for doing meaningful, impactful work.
iSec.News Motto: “Only news, only information security and privacy news. No fluff.”
-
Schneider Electric Devices Face Critical Vulnerability Risk
CISA has issued a security alert regarding critical vulnerabilities in Schneider Electric’s products, urging immediate action to mitigate risks and promoting best practices for cybersecurity.
-
Lee Enterprises Data Breach Affects Nearly 40,000 Individuals
Lee Enterprises has reported a data breach affecting nearly 40,000 individuals following a ransomware attack in February 2025, leading to significant operational disruptions across its publishing network.
-
Google Warns of Data Extortion Attacks Targeting Salesforce Accounts
Google has alerted companies using Salesforce to the rise of social engineering attacks targeting their platforms, warning that hackers claiming affiliation with the ShinyHunters extortion group are using advanced phishing tactics to steal sensitive data.
-
KiranaPro CEO Reports Targeted Cyberattack Leading to Loss of Critical Infrastructure
KiranaPro CEO Deepak Ravindran reported a targeted cyberattack that deleted vital data from the grocery app’s GitHub and AWS accounts, raising concerns about insider threats and prompting an overhaul of security measures.
-
Hewlett Packard Enterprise Issues Critical Security Warning for StoreOnce Backup Solutions
Hewlett Packard Enterprise has issued a security warning regarding eight vulnerabilities in its StoreOnce backup solutions, including a critical authentication bypass flaw that could allow for exploitation of other vulnerabilities.
-
New Campaign Uses Fake DocuSign and Gitcode Sites to Spread Malware
A new cyber campaign is using fake websites masquerading as DocuSign and Gitcode to spread the NetSupport RAT malware through deceptive PowerShell scripts. This strategy incorporates social engineering techniques and clipboard poisoning to execute malicious actions on unsuspecting users’ systems.
-
Emerging Android Banking Trojan Crocodilus Expands Global Reach, Targeting Users in Europe and South America
ThreatFabric’s recent findings highlight the worrying proliferation of the Android banking Trojan Crocodilus, which has expanded its malicious activities from Europe and Turkey to South America, employing increasingly sophisticated techniques to target users.
-
Microsoft and CrowdStrike Collaborate to Standardize Cyber Threat Actor Taxonomies
Microsoft and CrowdStrike have announced a strategic collaboration to unify their cyber threat actor taxonomies, enhancing the ability of security professionals to analyze and respond to cyber threats by reducing confusion among different aliases used for hacking groups.
-
Cartier Reports Data Breach Amid Growing Cybersecurity Concerns in Fashion Industry
Cartier has reported a data breach that exposed customer information, including names and email addresses. The company assures that no sensitive data was compromised and advises customers to remain vigilant against potential phishing attacks.
-
The North Face Alerts Customers Following Latest Credential Stuffing Attack
The North Face has alerted customers of a credential stuffing attack that exposed personal information on April 23, 2025. This incident marks the fourth such attack on the company since 2020, raising significant concerns about cybersecurity practices in the retail sector.
