Cristian Luțic
Cristian Luțic is a cybersecurity professional and Editor-in-Chief of iSec.News, with experience in security enablement, risk analysis, and vulnerability reporting. As Editor-in-Chief, he is responsible for editorial standards, source verification, and publication oversight at iSec News.
From professional sports to cybersecurity, his career path may have been unconventional, but it has been driven by the same core values: discipline, perseverance, and a passion for doing meaningful, impactful work.
iSec.News Motto: “Only news, only information security and privacy news. No fluff.”
-
Starkiller phishing suite proxies live login pages to bypass MFA
Researchers disclosed Starkiller, a phishing suite that proxies live login pages through attacker controlled headless browsers to capture keystrokes, session tokens and MFA codes. The toolkit centralises deployment and uses URL masking to hide destinations.
-
CyberStrikeAI observed on infrastructure tied to FortiGate campaign, researchers say
A Team Cymru report says the open source CyberStrikeAI platform was observed on infrastructure tied to a campaign that compromised more than 500 FortiGate firewalls. The report found 21 IPs running the tool between January 20 and February 26, 2026.
-
Patched Chrome flaw allowed malicious extensions to hijack Gemini panel
A Unit 42 technical analysis found CVE-2026-0628 could let malicious Chrome extensions inject code into the Gemini panel and access camera, microphone, screenshots, and local files. Google patched the issue in early January 2026.
-
Chrome to adopt Merkle Tree Certificates in phased move toward quantum resistance
Google said Chrome will develop Merkle Tree Certificates to make HTTPS resilient to future quantum threats and plans a phased rollout through Q3 2027, beginning with a feasibility study with Cloudflare.
-
UK automated scanner cuts DNS fix times from 50 days to eight
An automated Vulnerability Monitoring System cut DNS vulnerability remediation in the UK public sector from 50 days to eight and sped other fixes. Firefox added a Sanitizer API and the FTC updated COPPA policy on age verification.
-
North Korean actors publish 26 malicious npm packages that deploy credential stealer and RAT
North Korean-linked actors published 26 malicious npm packages in March 2026 that use Pastebin text steganography and Vercel hosted C2 to deliver a credential stealer and remote access trojan targeting developer systems.
-
Agentic AI moves into production, raising governance and monitoring demands
Agentic AI is moving into production, enabling models to plan and execute multi-step tasks without continuous human input. This increases the need for supervised fine-tuning, continuous monitoring and traceability to manage operational and regulatory risk.
-
ClawJacked flaw let malicious websites brute force local OpenClaw instances
A high severity OpenClaw vulnerability called ClawJacked let malicious websites brute force local management passwords at hundreds of guesses per second. OpenClaw issued a fix in version 2026.2.26 on February 26 to block the attack.
-
ManoMano notifies customers after third-party provider breach affecting 38 million
ManoMano notified customers after a January 2026 breach of a third-party support provider exposed personal data for 38 million people. No passwords were accessed and the company revoked the subcontractor’s data access.
-
Critical Junos flaw allows unauthenticated root takeover of PTX routers
A Junos OS Evolved flaw in PTX Series routers could allow unauthenticated remote code execution as root. Juniper issued patches and operators are advised to apply fixes or restrict access and consider disabling the vulnerable service.
