Breaking News – Cyber Threats (last 6h)
Generated: 2025-10-31 08:00 PDT
- Why password controls still matter in cybersecurity
BleepingComputer • 2025-10-31 07:02 • www.bleepingcomputer.com
Passwords still matter — and weak policies leave the door wide open. Specops Software explains how longer passphrases, smarter banned-password lists, and adaptive rotation strategies can strengthen security without frustrating users. […]
https://www.bleepingcomputer.com/news/security/why-password-controls-still-matter-in-cybersecurity/ - China-Linked Hackers Exploit Windows Shortcut Flaw to Target European Diplomats
The Hacker News • 2025-10-31 06:57 • thehackernews.com
A China-affiliated threat actor known as UNC6384 has been linked to a fresh set of attacks exploiting an unpatched Windows shortcut vulnerability to target European diplomatic and government entities between September and October 2025.
The activity targeted diplomatic organizations in Hungary, Belgium, Italy, and the Netherlands, as well as government agencies in Serbia, Arctic Wolf said in a
https://thehackernews.com/2025/10/china-linked-hackers-exploit-windows.html - Alleged Meduza Stealer malware admins arrested after hacking Russian org
BleepingComputer • 2025-10-31 06:45 • www.bleepingcomputer.com
The Russian authorities have arrested three individuals in Moscow who are believed to be the creators and operators of the Meduza Stealer information-stealing malware. […]
https://www.bleepingcomputer.com/news/security/alleged-meduza-stealer-malware-admins-arrested-after-hacking-russian-org/ - China-Linked Tick Group Exploits Lanscope Zero-Day to Hijack Corporate Systems
The Hacker News • 2025-10-31 06:26 • thehackernews.com
The exploitation of a recently disclosed critical security flaw in Motex Lanscope Endpoint Manager has been attributed to a cyber espionage group known as Tick.
The vulnerability, tracked as CVE-2025-61932 (CVSS score: 9.3), allows remote attackers to execute arbitrary commands with SYSTEM privileges on on-premise versions of the program. JPCERT/CC, in an alert issued this month, said that it
https://thehackernews.com/2025/10/china-linked-tick-group-exploits.html - CISA: High-severity Linux flaw now exploited by ransomware gangs
BleepingComputer • 2025-10-31 06:05 • www.bleepingcomputer.com
CISA confirmed on Thursday that a high-severity privilege escalation flaw in the Linux kernel is now being exploited in ransomware attacks. […]
https://www.bleepingcomputer.com/news/security/cisa-linux-privilege-escalation-flaw-now-exploited-in-ransomware-attacks/ - Google says Search AI Mode will know everything about you
BleepingComputer • 2025-10-31 04:55 • www.bleepingcomputer.com
Google wants ‘AI mode’ on Search to be as personal as possible, and it’ll soon tap into services like Gmail or Drive to know more about you. […]
https://www.bleepingcomputer.com/news/google/google-says-search-ai-mode-will-know-everything-about-you/ - The MSP Cybersecurity Readiness Guide: Turning Security into Growth
The Hacker News • 2025-10-31 04:30 • thehackernews.com
MSPs are facing rising client expectations for strong cybersecurity and compliance outcomes, while threats grow more complex and regulatory demands evolve. Meanwhile, clients are increasingly seeking comprehensive protection without taking on the burden of managing security themselves.
This shift represents a major growth opportunity. By delivering advanced cybersecurity and compliance
https://thehackernews.com/2025/10/the-msp-cybersecurity-readiness-guide.html - Windows zero-day actively exploited to spy on European diplomats
BleepingComputer • 2025-10-31 04:29 • www.bleepingcomputer.com
A China-linked hacking group is exploiting a Windows zero-day in attacks targeting European diplomats in Hungary, Belgium, and other European nations. […]
https://www.bleepingcomputer.com/news/security/chinese-hackers-exploit-windows-zero-day-to-spy-on-european-diplomats/ - Will AI Strengthen or Undermine Democracy?
Schneier on Security • 2025-10-31 04:08 • www.schneier.comListen to the Audio on NextBigIdeaClub.com
Below, co-authors Bruce Schneier and Nathan E. Sanders share five key insights from their new book, Rewiring Democracy: How AI Will Transform Our Politics, Government, and Citizenship.
What’s the big idea?
AI can be used both for and against the public interest within democracies. It is already being used in the governing of nations around the world, and there is no escaping its continued use in the futu…
https://www.schneier.com/blog/archives/2025/10/will-ai-strengthen-or-undermine-democracy.html - Phake phishing: Phundamental or pholly?
Sophos Security Ops • 2025-10-31 04:00 • news.sophos.com
Debates over the effectiveness of phishing simulations are widespread. Sophos X-Ops looks at the arguments for and against – and our own phishing philosophy
https://news.sophos.com/en-us/2025/10/31/phake-phishing-phundamental-or-pholly/ - Ukrainian extradited from Ireland on Conti ransomware charges
BleepingComputer • 2025-10-31 02:40 • www.bleepingcomputer.com
A Ukrainian national believed to be a member of the Conti ransomware operation has been extradited to the United States and faces charges that could get him 25 years in prison. […]
https://www.bleepingcomputer.com/news/security/ukrainian-extradited-from-ireland-on-conti-ransomware-charges/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
