Sergiu GatlanVerified account

@serghei

cybersecurity/tech reporter. DMs open.

bleepingcomputer.com/author/sergiu-…
Joined April 2009
643 Photos and videos Photos and videos

Tweets

You blocked @serghei

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @serghei

  1. Retweeted
    Apr 1

    Critical GitLab Vulnerability Lets Attackers Take Over Accounts

    8 retweets 9 likes
    Undo
  2. Retweeted
    Apr 1

    The Week in Ransomware - April 1st 2022 - 'I can fight with a keyboard' -

    1 reply 12 retweets 24 likes
    Show this thread
    Show this thread
    Undo
  3. Retweeted
    Apr 1

    Plot twist: Ukrainian SBU flatly denies that it told about any pre-invasion Chinese cyberattack campaign. This is an auto-translation of the Ukrainian-language statement.

    6 replies 78 retweets 141 likes
    Show this thread
    Show this thread
    Undo
  4. Retweeted
    Apr 1

    According to U.S. sources, this is routine scanning and attempts to gather intelligence.

    "More than 600 websites belonging to the defence ministry in Kyiv and other institutions suffered thousands of hacking attempts which were co-ordinated by the Chinese government, according to Ukraine’s security service, the SBU."
    Show this thread
    8 replies 125 retweets 264 likes
    Undo
  5. Retweeted
    Apr 1

    This notification will never not seem sinister.

    7 replies 68 retweets 437 likes
    Undo
  6. Retweeted
    Apr 1

    U.S. Treasury sanctions Russian research center blamed for Trisis malware by

    4 retweets 1 like
    Undo
  7. Retweeted
    Apr 1

    It's clear attackers are trying to exploit this. Here's an alert a GitHub user got today after connecting their account to Gitlab (just two days ago). Their Github account has 2FA and very strong password. This alert says the attacker tried to add some type of 2FA app.

    4 replies 57 retweets 91 likes
    Show this thread
    Show this thread
    Undo
  8. Retweeted
    Mar 31

    Phishing uses Azure Static Web Pages to impersonate Microsoft -

    3 replies 33 retweets 65 likes
    Undo
  9. Retweeted
    Mar 31

    "Both current and upcoming state-of-the-art mitigations such as Pointer Authentication and Memory Tagging have no impact at all… this exploit was far more extensible, reliable and generic than almost any memory corruption exploit could ever hope to be."

    Today we're publishing a follow-up post looking at the sandbox escape used by FORCEDENTRY:
    12 retweets 27 likes
    Undo
  10. Retweeted
    Mar 31

    Apple releases iOS 15.4.1, iPadOS 15.4.1, and macOS 12.3.1 to fix two zero-days that "may have been actively exploited"; Apple fixed five zero-days this year ( / BleepingComputer)

    3 retweets 10 likes
    Undo
  11. Retweeted
    Mar 31

    New AcidRain data wiper malware targets modems and routers -

    1 reply 54 retweets 62 likes
    Show this thread
    Show this thread
    Undo
  12. Mar 31

    shots fired 👀

    Google, angling for gov contracts, has published a study of federal workers saying the US government's overreliance on Microsoft is a cybersecurity problem. Message comes from former CISA/NPPD director Jeannette Manfra 👀👀
    1 retweet 1 like
    Undo
  13. Retweeted
    Mar 30

    New Spring Java framework zero-day allows remote code execution -

    3 replies 99 retweets 164 likes
    Show this thread
    Show this thread
    Undo
  14. Mar 30

    Back online

    Good news: PG&E has restored power to one of our datacenters, so we are bringing up our servers now. We appreciate your patience as we bring up the remaining services (all should be up in a couple of hours).
    Show this thread
    Show this thread
    Undo
  15. Mar 30

    If you're wondering why the Internet Archive has been down for hours ...

    ATTENTION: PG&E, our local power company, is implementing a planned power outage today near one of our datacenters. They now report that they will be done before 2pm PT. Please expect some disruptions in service. Thank you for your patience.
    1 reply 3 retweets 6 likes
    Show this thread
    Show this thread
    Undo
  16. Retweeted
    Mar 30

    SCOOP: Apple and Facebook provided user data in response to forged legal requests sent by hackers using compromised law enforcement email systems, according to three people familiar with the matter. Full story with much more details to follow.

    77 replies 3,342 retweets 10,534 likes
    Show this thread
    Show this thread
    Undo
  17. Mar 30

    Shocking, Meta doing Facebook things. Thought changing the name would fix everything.

    SCOOP: Meta is paying Targeted Victory, one of the biggest Republican consulting firms, to quietly orchestrate a nationwide campaign to turn the public against TikTok. We got a hold of documents outlining their plan. Read my and story
    Show this thread
    2 likes
    Undo
  18. Retweeted
    Mar 30

    Viasat shares details on KA-SAT satellite service cyberattack -

    33 retweets 42 likes
    Undo
  19. Retweeted
    Mar 30

    Finfisher bankrupt. Personally I’m looking forward to seeing more surveillance vendors going the same path as they are held to account.

    3 replies 26 retweets 77 likes
    Undo
  20. Mar 30

    Russia is the new China😬

    0:58
    The Russian govt “legalizes” “parallel imports”: the sale of goods without the permission of copyright holders. The list will include intellectual property like movies, music, software, and “inventions.” Russia goes from int’l pariah to PIRATE 🏴‍☠️.
    1 reply 3 likes
    Undo

@serghei hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·