Cristian Luțic
Cristian Luțic is a cybersecurity professional and Editor-in-Chief of iSec.News, with experience in security enablement, risk analysis, and vulnerability reporting. As Editor-in-Chief, he is responsible for editorial standards, source verification, and publication oversight at iSec News.
From professional sports to cybersecurity, his career path may have been unconventional, but it has been driven by the same core values: discipline, perseverance, and a passion for doing meaningful, impactful work.
iSec.News Motto: “Only news, only information security and privacy news. No fluff.”
-
US Air Force investigating ‘privacy-related issue’ after alleged SharePoint notice
The Department of the Air Force is investigating a “privacy-related issue” after an alleged notice said USAF SharePoint permissions exposed PII and PHI and that SharePoint, Teams and Power BI might be blocked; officials have provided limited confirmation and Microsoft declined to comment.
-
New Android banking trojan Klopatra has infected more than 3,000 devices, Cleafy says
Cleafy said a new Android banking trojan called Klopatra has infected over 3,000 devices, mainly in Spain and Italy, using VNC remote control, dynamic overlays and abuse of Android accessibility services to steal credentials and perform fraudulent transfers.
-
Okta says North Korean ‘IT worker’ scam is targeting healthcare, finance and AI hiring
Okta Threat Intelligence reported that nearly half of companies targeted by a North Korean-linked fake remote-worker scheme are outside IT, with rising activity in healthcare, finance and AI hiring; the firm tracked over 130 identities tied to more than 6,500 interviews from 2021 to mid-2025 and warned the sample likely understates the full scale.
-
Researchers say low-cost DDR4 interposer can bypass Intel and AMD memory protections
Researchers at KU Leuven and the University of Birmingham say a low-cost DDR4 interposer called Battering RAM can redirect physical addresses to bypass Intel SGX and AMD SEV-SNP protections in cloud confidential computing, potentially allowing plaintext reads, data corruption and persistent backdoors.
-
Unit 42 says China-aligned actor ‘Phantom Taurus’ has targeted government and telecom organisations in Africa, Middle East and Asia
Palo Alto Networks’ Unit 42 said a China-aligned actor it calls ‘Phantom Taurus’ has conducted an ongoing espionage campaign against government and telecom organisations across Africa, the Middle East and Asia, using bespoke .NET malware against IIS servers and tools to exfiltrate database content.
-
Breach of RemoteCOM surveillance service exposes records of nearly 14,000 monitored people
A breach of RemoteCOM’s SCOUT monitoring system exposed nearly 14,000 records of people under court supervision and contact details for thousands of officers, with leaked files showing device monitoring data, activity alerts and fees for monitored individuals.
-
Researchers disclose three now-patched vulnerabilities in Google’s Gemini AI
Researchers disclosed three patched vulnerabilities in Google’s Gemini AI that could have exposed users to privacy risks, affecting Cloud Assist, the Search Personalization model and the Browsing Tool, Tenable said; Google has applied mitigations.
-
CISA to end cooperative agreement and federal funding for Center for Internet Security
CISA said it will end its cooperative agreement with the Center for Internet Security on Sept. 30, 2025, ceasing federal funding for programs such as the MS-ISAC. CIS said it will shift MS-ISAC to a fee-based model after federal cuts, and officials warned the move could affect threat-sharing and election security.
-
Asahi suspends Japan operations after cyberattack
Asahi Group Holdings said a cyberattack has forced a halt to ordering, shipping and customer service operations in Japan; the company is investigating and said there is no confirmed data leakage so far but gave no recovery timeline.
-
Phishing campaign impersonates Ukrainian police to deliver data stealer and cryptominer
FortiGuard Labs reported a fileless phishing campaign impersonating Ukraine’s National Police that uses malicious SVG attachments to deliver Amatera Stealer and PureMiner, harvesting credentials and installing a cryptominer on Windows systems.
