Cristian Luțic
Cristian Luțic is a cybersecurity professional and Editor-in-Chief of iSec.News, with experience in security enablement, risk analysis, and vulnerability reporting. As Editor-in-Chief, he is responsible for editorial standards, source verification, and publication oversight at iSec News.
From professional sports to cybersecurity, his career path may have been unconventional, but it has been driven by the same core values: discipline, perseverance, and a passion for doing meaningful, impactful work.
iSec.News Motto: “Only news, only information security and privacy news. No fluff.”
-
Palo Alto fixes GlobalProtect DoS flaw tracked as CVE-2026-0227
Palo Alto issued updates for a high-severity GlobalProtect denial-of-service flaw CVE-2026-0227 with CVSS 7.7 on Jan 15, 2026. A proof-of-concept exists and no workarounds are available.
-
France fines Free and Free Mobile €42 million after breach exposed 24.6 million records
CNIL imposed a collective €42 million fine on Free and Free Mobile after an October 2024 breach exposed 24,633,469 customer records including IBANs. The decision cited weak VPN authentication, ineffective detection and poor data retention controls.
-
Report finds DLL side-loading attack using GitKraken ahost.exe spreads trojans and stealers
A Trellix report says attackers exploit DLL side-loading in a utility tied to the c-ares library to deliver multiple trojans and stealers to employees in commercial and industrial sectors using invoice themed lures in several languages.
-
Monroe University data breach exposed information on 320,973 people
Monroe University said a December 2024 cyberattack exposed personal, financial, and health data for 320,973 people. Notifications began in January and affected individuals are offered one year of free credit monitoring.
-
CERT-UA advisory outlines PLUGGYAPE campaign using Signal and WhatsApp against Ukrainian forces
A CERT-UA advisory says PLUGGYAPE was used in October to December 2025 attacks on Ukrainian defense forces. Delivery used Signal and WhatsApp links to passworded archives that installed a PyInstaller executable and a Python backdoor.
-
Belgian hospital shuts down servers and cancels procedures after cyberattack
A Belgian hospital operating in Antwerp and Deurne disconnected servers at 6:32 AM after a cyberattack, cancelling scheduled procedures and transferring seven critical patients. Authorities have been notified and an investigation is under way.
-
Long running web skimmer targeted major payment networks since 2022
A technical analysis found a web skimming campaign active since January 2022 that targeted major payment networks and used obfuscated JavaScript to harvest payment and personal data from checkout pages.
-
VoidLink modular Linux malware targets cloud and container environments
VoidLink is a modular Linux malware framework found in December 2025 that targets cloud and container environments. The framework supports 37 plugins and includes rootkit techniques, credential harvesting and multiple command and control channels.
-
New SHADOW#REACTOR campaign uses text only stagers and MSBuild to deploy Remcos RAT
A technical report from Securonix details SHADOW#REACTOR, a campaign that stages text only fragments and in memory loaders to deliver the Remcos RAT and achieve persistent access, using MSBuild and other legitimate Windows binaries.
-
CISA Adds Gogs Path Traversal CVE-2025-8110 to Known Exploited Vulnerabilities Catalog
CISA added CVE-2025-8110, a high severity Gogs path traversal that can enable code execution, to its Known Exploited Vulnerabilities catalog on January 12 2026. About 1,600 exposed instances exist with several hundred compromised.
