Ionut Ilascu

Iaşi

Security News Reporter at Bleeping Computer

security news reporter @BleepinComputer  🐘: https://t.co/9L2XjPxKEV

Featured in: Favicon

bleepingcomputer.com Favicon

softpedia.com Favicon

substack.com Favicon

flipboard.com Favicon

codeproject.com Favicon

newsbreak.com Favicon

digitalguardian.com Favicon

news.softpedia.com Favicon

metacurity.substack.com

Articles

Police detains Smokeloader malware customers, seizes servers

2 weeks ago | bleepingcomputer.com | Ionut Ilascu

In follow-up activity for Operation Endgame, law enforcement tracked down Smokeloader botnet’s customers and detained at least five individuals. During Operation Endgame last year, more than 100 servers used by major malware loader operations (e.g. IcedID, Pikabot, Trickbot, Bumblebee, Smokeloader, SystemBC) were seized.
WinRAR flaw bypasses Windows Mark of the Web security alerts | OpenText Cybersecurity Community

2 weeks ago | community.opentextcybersecurity.com | Ionut Ilascu

April 5, 2025 By Ionut IlascuA vulnerability in the WinRAR file archiver solution could be exploited to bypass the Mark of the Web (MotW) security warning and execute arbitrary code on a Windows machine. The security issue is tracked as CVE-2025-31334 and affects all WinRAR versions except the most recent release, which is currently 7.11.
WinRAR flaw bypasses Windows Mark of the Web security alerts

2 weeks ago | bleepingcomputer.com | Ionut Ilascu

A vulnerability in the WinRAR file archiver solution could be exploited to bypass the Mark of the Web (MotW) security warning and execute arbitrary code on a Windows machine. The security issue is tracked as CVE-2025-31334 and affects all WinRAR versions except the most recent release, which is currently 7.11.
WinRAR flaw bypasses Windows Mark of the Web security alerts

2 weeks ago | flipboard.com | Ionut Ilascu

2 hours agoMicrosoft Confirms Password Deletion For Windows Users—What You Do NowAs Microsoft confirms “it’s now time “to completely remove the password from your account,” millions of users are looking for guidance as to what to do next. The solution is simple. Now “the password era is ending,” all those users should act now.
Europcar GitLab breach exposes data of up to 200,000 customers

2 weeks ago | bleepingcomputer.com | Ionut Ilascu

A hacker breached the GitLab repositories of multinational car-rental company Europcar Mobility Group and stole source code for Android and iOS applications, as well as some personal information belonging to up to 200,000 customers. The actor tried to extort the company by threatening to publish 37GB of data that includes backups and details about the company’s cloud infrastructure and internal applications.
Dozens of solar inverter flaws could be exploited to attack power grids | OpenText Cybersecurity Community

4 weeks ago | community.opentextcybersecurity.com | Ionut Ilascu

March 27, 2025 By Ionut IlascuDozens of vulnerabilities in products from three leading makers of solar inverters, Sungrow, Growatt, and SMA, could be exploited to control devices or execute code remotely on the vendor’s cloud platform. The potential impact of the security problems has been assessed as severe because they could be used in attacks that could at least influence grid stability, and affect user privacy.
Dozens of solar inverter flaws could be exploited to attack power grids

4 weeks ago | bleepingcomputer.com | Ionut Ilascu

Dozens of vulnerabilities in products from three leading makers of solar inverters, Sungrow, Growatt, and SMA, could be exploited to control devices or execute code remotely on the vendor’s cloud platform. The potential impact of the security problems has been assessed as severe because they could be used in attacks that could at least influence grid stability, and affect user privacy.
HellCat hackers go on a worldwide Jira hacking spree

1 month ago | bleepingcomputer.com | Ionut Ilascu

Swiss global solutions provider Ascom has confirmed a cyberattack on its IT infrastructure as a hacker group known as Hellcat targets Jira servers worldwide using compromised credentials. The company announced in a press release that hackers on Sunday breached its technical ticketing system and is currently investigating the incident. Ascom is a telecommunications company with subsidiaries in 18 countries focusing on wireless on-site communications.
Nearly 12,000 API keys and passwords found in AI training dataset

1 month ago | bleepingcomputer.com | Ionut Ilascu

Close to 12,000 valid secrets that include API keys and passwords have been found in the Common Crawl dataset used for training multiple artificial intelligence models. The Common Crawl non-profit organization maintains a massive open-source repository of petabytes of web data collected since 2008 and is free for anyone to use.
Nearly 12,000 API keys and passwords found in AI training dataset

1 month ago | flipboard.com | Ionut Ilascu

4 hours agoTrudeau to bring up Trump's threat to annex Canada in meeting with King CharlesTORONTO (AP) — Canadian Prime Minister Justin Trudeau will meet with King Charles III, the country’s head of state, on Monday where he will discuss U.S. President Donald Trump’s threats to make Canada the 51st state.

Contact details

Emails

[email protected]

Socials & Sites

Try JournoFinder For Free

Search and contact over 1M+ journalist profiles, browse 100M+ articles, and unlock powerful PR tools.

Start Your 7-Day Free Trial →

X (formerly Twitter)

Followers: 5K
Tweets: 4K
DMs Open: Yes

Ionut Ilascu @Ionut_Ilascu

18 Jan 25

RT @piffd0s: I read @C_h4ck_0 's research on finding lolbas and wrote a script to do this with ida batch processing. The default will find…

Ionut Ilascu @Ionut_Ilascu

29 Sep 24

Time-sensitive fundraiser to help a cybersecurity expert and family with legal, visa, and travel expenses required to flee a hostile country. https://t.co/xo33bPtdvU

Ionut Ilascu @Ionut_Ilascu

19 Sep 24

RT @HaifeiLi: Personal update: if you need a guy who is passionate on innovative in-the-wild zero-day exploit detection and advanced vulner…

Ionut Ilascu

Articles

Police detains Smokeloader malware customers, seizes servers

WinRAR flaw bypasses Windows Mark of the Web security alerts | OpenText Cybersecurity Community

WinRAR flaw bypasses Windows Mark of the Web security alerts

WinRAR flaw bypasses Windows Mark of the Web security alerts

Europcar GitLab breach exposes data of up to 200,000 customers

Dozens of solar inverter flaws could be exploited to attack power grids | OpenText Cybersecurity Community

Dozens of solar inverter flaws could be exploited to attack power grids

HellCat hackers go on a worldwide Jira hacking spree

Nearly 12,000 API keys and passwords found in AI training dataset

Nearly 12,000 API keys and passwords found in AI training dataset

Contact details

Emails

Socials & Sites

X (formerly Twitter)