Ionut Ilascu's profile photo

Ionut Ilascu

Iaşi

Security News Reporter at Bleeping Computer

security news reporter @BleepinComputer  🐘: https://t.co/9L2XjPxKEV

Articles

  • 3 days ago | bleepingcomputer.com | Ionut Ilascu

    A cybersecurity researcher has developed FileFix, a variant of the ClickFix social engineering attack that tricks users into executing malicious commands via the File Explorer address bar in Windows. FileFix, a variation of the social-engineering attack called ClickFix, allows threat actors to execute commands on the victim system through the File Explorer address bar in Windows.

  • 6 days ago | bleepingcomputer.com | Ionut Ilascu

    Russian hackers bypass multi-factor authentication and access Gmail accounts by leveraging app-specific passwords in advanced social engineering attacks that impersonate U.S. Department of State officials. The threat actor targeted well-known academics and critics of Russia in what is described as a “sophisticated and personalized novel social engineering attack” that did not rush the persons of interest into taking action.

  • 1 week ago | bleepingcomputer.com | Ionut Ilascu

    Threat intelligence researchers are warning of hackers breaching multiple U.S. companies in the insurance industry using all the tactics observed with Scattered Spider activity. Typically, the threat group has a sector-by-sector focus. Previously, they targeted retail organizations in the United Kingdom and then switched to targets in the same sector in the United States.

  • 3 weeks ago | bleepingcomputer.com | Ionut Ilascu

    Hackers are likely starting to exploit CVE-2025-49113, a critical vulnerability in the widely used Roundcube open-source webmail application that allows remote execution. The security issue has been present in Roundcube for over a decade and impacts versions of Roundcube webmail 1.1.0 through 1.6.10. It received a patch on June 1st. It took attackers just a couple of days to reverse engineer the fix, weaponize the vulnerability, and start selling a working exploit on at least one hacker forum.

  • 3 weeks ago | bleepingcomputer.com | Ionut Ilascu

    Earlier today, law enforcement seized multiple domains of BidenCash, the infamous dark web market for stolen credit cards, personal information, and SSH access. The illegal shop’s domain on the dark web now redirects to the Secret Service’s domain for seizing websites involved in illegal activities.

Contact details

Socials & Sites

Try JournoFinder For Free

Search and contact over 1M+ journalist profiles, browse 100M+ articles, and unlock powerful PR tools.

Start Your 7-Day Free Trial →

X (formerly Twitter)

Followers
5K
Tweets
4K
DMs Open
Yes
Ionut Ilascu
Ionut Ilascu @Ionut_Ilascu
18 Jan 25

RT @piffd0s: I read @C_h4ck_0 's research on finding lolbas and wrote a script to do this with ida batch processing. The default will find…

Ionut Ilascu
Ionut Ilascu @Ionut_Ilascu
29 Sep 24

Time-sensitive fundraiser to help a cybersecurity expert and family with legal, visa, and travel expenses required to flee a hostile country. https://t.co/xo33bPtdvU

Ionut Ilascu
Ionut Ilascu @Ionut_Ilascu
19 Sep 24

RT @HaifeiLi: Personal update: if you need a guy who is passionate on innovative in-the-wild zero-day exploit detection and advanced vulner…