Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Articles by: Sead Fadilpašić

Linux penguin logo on wood

Another major Linux security flaw revealed — nine-year old issue could spell disaster for users

By Sead Fadilpašić published

There was a way to elevate normal Linux users' privileges to root, granting threat actors admin access.

A woman out of focus in the background touches the word AI, lit up in glowing yellow light, in the foreground. The woman is wearing smart glasses

Cisco tried using AI to write security incident reports — and things didn't really go as planned

By Sead Fadilpašić published

There are many challenges with generating long-form reports with AI, even with specific sources and instructions.

Hacking red and blue digital binary code matrix 01 background.

'You have no way to revoke it faster or confirm when it stops working': Experts find Google API keys are still usable, even after you delete them

By Sead Fadilpašić published

For more than 20 minutes after deletion, some Google API keys can still be used, apparently creating a major security gap.

Windows Defender

Microsoft confirms two major Defender security issues — so update now or face possible attack

By Sead Fadilpašić published

CISA confirms two bugs being actively exploited in the wild, as Microsoft releases patches.

Computer programming code. Programming code abstract technology background of software developer and Computer script.

AI-generated code is outpacing every manual remediation model in existence': Nearly all firms admit they have shipped code they know is vulnerable

By Sead Fadilpašić published

Organizations are rushing to push the code live, ignoring the obvious security risks.

Woman annoyed at laptop crash

Bizarre Facebook scam falsely offers Aldi “meat boxes” for under $10 — but just steals your card details

By Sead Fadilpašić published

If you're getting a box of meat for a price of a sandwich, it's probably a scam, researchers explain.

Man looking at smartphone

Android users beware — this huge fraud scam campaign hit millions of victims around the world, make sure you're not next

By Sead Fadilpašić published

Researchers found hundreds of malicious Android apps on the Play Store, generating profits through fake ads.

IA y ciberseguridad

Nvidia tells users to update GPU drivers now or face possible attack — here's what we know

By Sead Fadilpašić published

More than a dozen Nvidia GPU flaws were fixed, including several high-severity ones.

Back View of Young Black Man Walking and Looking at Big Digital Screens Glitching While Displaying Code Lines. Professional Hacker Breaking Through Cybersecurity Protection System, Changing Code

Top arcade game maker leaks nearly 19 million user records via WeChat mini app

By Sead Fadilpašić published

Researchers found a new Elasticsearch instance containing plenty of sensitive data.

GitHub Webpage

GitHub confirms breach — thousands of internal repositories hit after employee installs malicious VS Code extension

By Sead Fadilpašić published

TeamPCP continues its attack on open source projects, now apparently asking for $50,000.

World Password Day 2025

'This reveals a broader security problem': Experts warn a key Microsoft legacy tool is still being abused to launch malware campaigns

By Sead Fadilpašić published

MSHTA is being used for both simple and advanced threats, deploying loaders and infostealers.

A phone sitting on a laptop keyboard with the Microsoft Outlook logo on the screen.

Microsoft warns hackers are exploiting password resets to gain access to user accounts - here's how to stay safe

By Sead Fadilpašić published

Storm-2949 is engaged in a "methodical, sophisticated, and multi-layered" campaign against Microsoft 365 accounts.

Malware attack virus alert , malicious software infection , cyber security awareness training to protect business

Microsoft takes down 'Fox Tempest' cybercrime service which used legitimate platforms to hide dangerous malware

By Sead Fadilpašić published

Fox Tempest created more than a thousand fake certificates, helping distribute Lumma, Vidar, and countless other malware.

Mini Shai-Halud hackers publish over 600 compromised npm packages — developers warned to be on their guard

By Sead Fadilpašić published

The Shai-Hulud campaign continues, now affecting hundreds of new packages and potentially compromising thousands of projects.

ransomware

'The detection surface is significantly reduced': Sophos report warns new "WantToCry" ransomware could pose a major risk to your business, here's what we know

By Sead Fadilpašić published

WantToCry operators are asking for change, compared to other ransomware players.

Passkeys

Microsoft finally ends using SMS codes for account sign-in — with passkeys officially taking over

By Sead Fadilpašić published

Microsoft believes that the future of authentication is passwordless, secure, and user-friendly.

A composite image featuring a stylized digital military base schematic partially covered by a translucent "Data Leak" warning graphic in red and white.

CISA contractor apparently leaked 'highly sensitive' government AWS keys on Github

By Sead Fadilpašić published

The leak was so bad, researchers initially thought it was a joke.

Fingerprint

NYC Health + Hospitals says mega data breach allowed hackers to steal personal data, medical records, and fingerprints scans of around 1.8 million people

By Sead Fadilpašić published

Fingerprints and palm prints can never be changed, which makes this attack that much more dangerous.

A hand about to touch a phone. Superimposed on top of it is a pink triangle with exclamation mark inside it. Behind it is a computer display with code on it

7-Eleven confirms cyberattack, says 'personal information' may have been hit

By Sead Fadilpašić published

A new filing with the Maine AG confirms what was known for weeks now - that ShinyHunters broke in to 7-Eleven and stole data.

The menu bar running in macOS.

Mac users beware — this devious new infostealer malware disguises itself as official Apple tools to lure in victims

By Sead Fadilpašić published

SentinelOne found a new variant of the SHub macOS infostealer called Reaper.

Linus Torvalds

'Almost entirely unmanageable': Linus Torvalds says AI bug hunters have ruined Linux security mailing list

By Sead Fadilpašić published

Torvalds says everyone is using AI to report on the same flaws, most of which have already been fixed.

Wordpress brand logo on computer screen. Man typing on the keyboard.

Another top WordPress plugin exploited — hackers target credit card details, here's what you need to know

By Sead Fadilpašić published

Funnel Builder WordPress plugin is being exploited to steal people's credit cards but the flaw has since been patched.

Secure technology. Polygonal wireframe shield with check mark sign on dark blue. Secure service, protect data, cyber shield, antivirus solution, internet safety, firewall system, privacy

'The exact same issue that was reported to Microsoft by Google project zero is actually still present, unpatched': Chaotic Eclipse strikes again with another worrying Windows security flaw

By Sead Fadilpašić published

A new Windows 11 bug called MiniPlasma was disclosed on GitHub, together with a PoC.

An iPhone showing Spotify in the Apple app store, laying on top of a laptop keyboard

Pro-Iran hackers claim recent Spotify outage was revenge for US action in their country

By Sead Fadilpašić published

Spotify was offline for a few hours earlier this month, with users reporting the app and web player inaccessible.

ransomware avast

Grafana says hackers hit its GitHub environment, demand ransom to prevent codebase release — but it's refusing to pay

By Sead Fadilpašić published

CoinbaseCartel somehow obtained an access token and used it to steal files from the GitHub environment.

Other versions of this page are available with specific content for the following regions: