Sergiu Gatlan
@serghei.bsky.social
5.5K followers
870 following
82 posts
Cybersecurity/tech reporter @BleepingComputer / serghei.ro
Posts
Media
Videos
Starter Packs
Reposted by Sergiu Gatlan
Reposted by Sergiu Gatlan
Reposted by Sergiu Gatlan
BleepingComputer
@bleepingcomputer.com
· Sep 17
SonicWall warns customers to reset credentials after breach
SonicWall warned customers today to reset credentials after their firewall configuration backup files were exposed in a security breach that impacted MySonicWall accounts.
www.bleepingcomputer.com
Reposted by Sergiu Gatlan
Catalin Cimpanu
@campuscodi.risky.biz
· Sep 11
Appeal court orders release of convicted psychotherapy centre database hacker
If the court reduces his sentence, there's a risk that Aleksanteri Kivimäki will have spent too much time in prison — and then be able to demand compensation from the state.
yle.fi
Reposted by Sergiu Gatlan
BleepingComputer
@bleepingcomputer.com
· Sep 10
Hackers left empty-handed after massive NPM supply-chain attack
The largest supply-chain compromise in the history of the NPM ecosystem has impacted roughly 10% of all cloud environments, but attackers made little profit off it.
www.bleepingcomputer.com
Sergiu Gatlan
@serghei.bsky.social
· Sep 8
NPM has yet to respond to any of this, but it appears at least `debug`'s malicious package version has been yanked.
I contacted @porkbun.com about the phishing domain and called support to have it escalated.
Nothing I can do but sit and wait right now. Sorry folks.
I contacted @porkbun.com about the phishing domain and called support to have it escalated.
Nothing I can do but sit and wait right now. Sorry folks.
Reposted by Sergiu Gatlan
BleepingComputer
@bleepingcomputer.com
· Aug 21
Orange Belgium discloses data breach impacting 850,000 customers
Orange Belgium, a subsidiary of telecommunications giant Orange Group, disclosed on Wednesday that attackers who breached its systems in July have stolen the data of approximately 850,000 customers.
www.bleepingcomputer.com
Sergiu Gatlan
@serghei.bsky.social
· Aug 18
HR giant Workday discloses data breach after Salesforce attack
Human resources giant Workday has disclosed a data breach after attackers gained access to a third-party customer relationship management (CRM) platform in a recent social engineering attack.
www.bleepingcomputer.com
Reposted by Sergiu Gatlan
BleepingComputer
@bleepingcomputer.com
· Aug 15
Colt Telecom attack claimed by WarLock ransomware, data up for sale
UK-based telecommunications company Colt Technology Services is dealing with a cyberattack that has caused a multi-day outage of some of the company's operations, including hosting and porting services, Colt Online and Voice API platforms.
www.bleepingcomputer.com
Reposted by Sergiu Gatlan
BleepingComputer
@bleepingcomputer.com
· Aug 13
New downgrade attack can bypass FIDO auth in Microsoft Entra ID
Security researchers have created a new FIDO downgrade attack against Microsoft Entra ID that tricks users into authenticating with weaker login methods, making them susceptible to phishing and session hijacking.
www.bleepingcomputer.com
Sergiu Gatlan
@serghei.bsky.social
· Aug 11
Inside the Multimillion-Dollar Gray Market for Video Game Cheats
Gaming cheats are the bane of the video game industry—and a hot commodity. A recent study found that cheat creators are making a fortune from gamers looking to gain a quick edge.
www.wired.com
Sergiu Gatlan
@serghei.bsky.social
· Aug 7
Microsoft warns of high-severity flaw in hybrid Exchange deployments
Microsoft has warned customers to mitigate a high-severity vulnerability in Exchange Server hybrid deployments that could allow attackers to escalate their privileges in Exchange Online cloud environm...
www.bleepingcomputer.com
Reposted by Sergiu Gatlan
Reposted by Sergiu Gatlan
Sergiu Gatlan
@serghei.bsky.social
· Aug 5
Cisco has disclosed that cybercriminals stole the basic profile information of users registered on Cisco.com following a voice phishing (vishing) attack targeting a company representative.
Cisco discloses data breach impacting Cisco.com user accounts
Cisco has disclosed that cybercriminals stole the basic profile information of users registered on Cisco.com following a voice phishing (vishing) attack targeting a company representative.
www.bleepingcomputer.com