Breaking News – Cyber Threats (last 6h)
Generated: 2025-10-30 13:00 PDT
- Major telecom services provider Ribbon breached by state hackers
BleepingComputer • 2025-10-30 12:03 • www.bleepingcomputer.com
Ribbon Communications, a provider of telecommunications services to the U.S. government and telecom companies worldwide, revealed that nation-state hackers breached its IT network as early as December 2024. […]
https://www.bleepingcomputer.com/news/security/major-telecom-services-provider-ribbon-breached-by-state-hackers/ - BPO giant Conduent confirms data breach impacts 10.5 million people
BleepingComputer • 2025-10-30 11:38 • www.bleepingcomputer.com
American business services giant Conduent has confirmed that a 2024 data breach has impacted over 10.5 million people, according to notifications filed with the US Attorney General’s offices. […]
https://www.bleepingcomputer.com/news/security/bpo-giant-conduent-confirms-data-breach-impacts-105-million-people/ - WhatsApp adds passwordless chat backups on iOS and Android
BleepingComputer • 2025-10-30 11:02 • www.bleepingcomputer.com
WhatsApp is rolling out passkey-encrypted backups for iOS and Android devices, enabling users to encrypt their chat history using their fingerprint, face, or a screen lock code. […]
https://www.bleepingcomputer.com/news/security/whatsapp-adds-passwordless-chat-backups-on-ios-and-android/ - BRONZE BUTLER exploits Japanese asset management software vulnerability
Sophos Threat Research • 2025-10-30 10:55 • news.sophos.com
The threat group targeted a LANSCOPE zero-day vulnerability (CVE-2025-61932)
https://news.sophos.com/en-us/2025/10/30/bronze-butler-exploits-japanese-asset-management-software-vulnerability/ - Google's Built-In AI Defenses on Android Now Block 10 Billion Scam Messages a Month
The Hacker News • 2025-10-30 10:00 • thehackernews.com
Google on Thursday revealed that the scam defenses built into Android safeguard users around the world from more than 10 billion suspected malicious calls and messages every month.
The tech giant also said it has blocked over 100 million suspicious numbers from using Rich Communication Services (RCS), an evolution of the SMS protocol, thereby preventing scams before they could even be sent.
In
https://thehackernews.com/2025/10/googles-built-in-ai-defenses-on-android.html - Ex-L3Harris exec guilty of selling cyber exploits to Russian broker
BleepingComputer • 2025-10-30 09:43 • www.bleepingcomputer.com
Peter Williams, a former general manager at U.S. defense contractor L3Harris Trenchant, has pleaded guilty in U.S. District Court to stealing and selling confidential cybersecurity information to a Russian vulnerability exploit broker. […]
https://www.bleepingcomputer.com/news/security/ex-l3harris-exec-guilty-of-selling-cyber-exploits-to-russian-broker/ - Russian Ransomware Gangs Weaponize Open-Source AdaptixC2 for Advanced Attacks
The Hacker News • 2025-10-30 09:40 • thehackernews.com
The open-source command-and-control (C2) framework known as AdaptixC2 is being used by a growing number of threat actors, some of whom are related to Russian ransomware gangs.
AdaptixC2 is an emerging extensible post-exploitation and adversarial emulation framework designed for penetration testing. While the server component is written in Golang, the GUI Client is written in C++ QT for
https://thehackernews.com/2025/10/russian-ransomware-gangs-weaponize-open.html - Spam text scammer fined £200,000 for targeting people in debt, after sending nearly one million messages
Graham Cluley • 2025-10-30 09:18 • www.bitdefender.com
The UK Information Commissioner’s Office (ICO) has levied a fine of £200,000 against a sole trader who sent almost one million spam text messages to people across the country – many of whom were already struggling with debt.Read more in my article on the Hot for Security blog.
https://www.bitdefender.com/en-us/blog/hotforsecurity/spam-text-scammer-fined-200-000-for-targeting-people-in-debt-after-sending-nearly-one-million-messages - CISA and NSA share tips on securing Microsoft Exchange servers
BleepingComputer • 2025-10-30 09:11 • www.bleepingcomputer.com
The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance to help IT administrators harden Microsoft Exchange servers on their networks against attacks. […]
https://www.bleepingcomputer.com/news/security/cisa-and-nsa-share-tips-on-securing-microsoft-exchange-servers/ - The human cost of the UK Government’s Afghan data leak
Graham Cluley • 2025-10-30 09:05 • grahamcluley.com
Can data leaks do real harm? Yes, they can. And so can a failure to respond appropriately.
https://grahamcluley.com/the-human-cost-of-the-uk-governments-afghan-data-leak/ - New "Brash" Exploit Crashes Chromium Browsers Instantly with a Single Malicious URL
The Hacker News • 2025-10-30 07:45 • thehackernews.com
A severe vulnerability disclosed in Chromium’s Blink rendering engine can be exploited to crash many Chromium-based browsers within a few seconds.
Security researcher Jose Pino, who disclosed details of the flaw, has codenamed it Brash.
“It allows any Chromium browser to collapse in 15-60 seconds by exploiting an architectural flaw in how certain DOM operations are managed,” Pino said in a
https://thehackernews.com/2025/10/new-brash-exploit-crashes-chromium.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
