Viewing the profile for Ionut Ilascu

• Forum Profile:ilaion

• Get in touch:

Author Bio

Ionut Ilascu is a technology writer with a focus on all things cybersecurity. The topics he writes about include malware, vulnerabilities, exploits and security defenses, as well as research and innovation in information security. His work has been published by Bitdefender, Netgear, The Security Ledger and Softpedia.

• News
• Virus Removal Guides
• Tutorials

News

• 
  

  Attackers exploit link-wrapping services to steal Microsoft 365 logins

  A threat actor has been abusing link wrapping services from reputed technology companies to mask malicious links leading to Microsoft 365 phishing pages that collect login credentials.

  • Ionut Ilascu
  • August 02, 2025
  • 10:24 AM
  • 0

• 
  

  AI-powered Cursor IDE vulnerable to prompt-injection attacks

  A vulnerability that researchers call CurXecute is present in almost all versions of the AI-powered code editor Cursor, and can be exploited to execute remote code with developer privileges.

  • Ionut Ilascu
  • August 01, 2025
  • 09:00 AM
  • 0

• 
  

  SonicWall SMA devices hacked with OVERSTEP rootkit tied to ransomware

  A threat actor has been deploying a previously unseen malware called OVERSTEP that modifies the boot process of fully-patched but no longer supported SonicWall Secure Mobile Access appliances.

  • Ionut Ilascu
  • July 16, 2025
  • 11:33 AM
  • 0

• 
  

  Hacker leaks Telefónica data allegedly stolen in a new breach

  A hacker is threatening to leak 106GB of data allegedly stolen from Spanish telecommunications company Telefónica in a breach that the company did not acknowledge.

  • Ionut Ilascu
  • July 04, 2025
  • 11:11 AM
  • 0

• 
  

  Bluetooth flaws could let hackers spy through your microphone

  Vulnerabilities affecting a Bluetooth chipset present in more than two dozen audio devices from ten vendors can be exploited for eavesdropping or stealing sensitive information.

  • Ionut Ilascu
  • June 29, 2025
  • 12:03 PM
  • 0

• 
  

  Hackers abuse Microsoft ClickOnce and AWS services for stealthy attacks

  In a sophisticated campaign that researchers called OneClik, red-team hackers leveraged Microsoft’s ClickOnce software deployment tool and custom Golang backdoors to simulate compromising organizations within the energy, oil, and gas sectors.

  • Ionut Ilascu
  • June 25, 2025
  • 04:34 PM
  • 1

• 
  

  New FileFix attack weaponizes Windows File Explorer for stealthy commands

  A cybersecurity researcher has developed FileFix, a variant of the ClickFix social engineering attack that tricks users into executing malicious commands via the File Explorer address bar in Windows.

  • Ionut Ilascu
  • June 24, 2025
  • 11:00 AM
  • 0

• 
  

  Russian hackers bypass Gmail MFA using stolen app passwords

  Russian hackers bypass multi-factor authentication and access Gmail accounts by leveraging app-specific passwords in advanced social engineering attacks that impersonate U.S. Department of State officials.

  • Ionut Ilascu
  • June 21, 2025
  • 11:13 AM
  • 3

• 
  

  Hackers switch to targeting U.S. insurance companies

  Threat intelligence researchers are warning of hackers breaching multiple U.S. companies in the insurance industry using all the tactics observed with Scattered Spider activity.

  • Ionut Ilascu
  • June 16, 2025
  • 04:43 PM
  • 0

• 
  

  Hacker selling critical Roundcube webmail exploit as tech info disclosed

  Hackers are actively exploiting CVE-2025-49113, a critical vulnerability in the widely used Roundcube open-source webmail application that allows remote execution.

  • Ionut Ilascu
  • June 05, 2025
  • 12:55 PM
  • 0

• 
  

  BidenCash carding market domains seized in international operation

  Earlier today, law enforcement seized multiple domains of BidenCash, the infamous dark web market for stolen credit cards, personal information, and SSH access.

  • Ionut Ilascu
  • June 04, 2025
  • 01:10 PM
  • 0

• 
  

  CISA warns of ConnectWise ScreenConnect bug exploited in attacks

  CISA is alerting federal agencies in the U.S. of hackers exploiting a recently patched ScreenConnect vulnerability that could lead to executing remote code on the server.

  • Ionut Ilascu
  • June 03, 2025
  • 09:57 AM
  • 0

• 
  

  Dark Partners cybercrime gang fuels large-scale crypto heists

  A sprawling network of fake AI, VPN, and crypto software download sites is being used by the “Dark Partner” threat actors to conduct a crypto theft attacks worldwide.

  • Ionut Ilascu
  • May 28, 2025
  • 12:39 PM
  • 0

• 
  

  US indicts leader of Qakbot botnet linked to ransomware attacks

  The U.S. government has indicted Russian national Rustam Rafailevich Gallyamov, the leader of the Qakbot botnet malware operation that compromised over 700,000 computers and enabled ransomware attacks.

  • Ionut Ilascu
  • May 22, 2025
  • 04:16 PM
  • 0

• 
  

  Russian hackers breach orgs to track aid routes to Ukraine

  A Russian state-sponsored cyberespionage campaign attributed to APT28 (Fancy Bear/Forest Blizzard) hackers has been targeting and compromising international organizations since 2022 to disrupt aid efforts to Ukraine.

  • Ionut Ilascu
  • May 21, 2025
  • 05:21 PM
  • 0

Ionut Ilascu