Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-07 16:00 PST
- Friday Squid Blogging: Squid Game: The Challenge, Season Two
Schneier on Security • 2025-11-07 14:01 • www.schneier.comThe second season of the Netflix reality competition show Squid Game: The Challenge has dropped. (Too many links to pick a few—search for it.)
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
- Malicious NuGet packages drop disruptive 'time bombs'
BleepingComputer • 2025-11-07 12:53 • www.bleepingcomputer.com
Several malicious packages on NuGet have sabotage payloads scheduled to activate in 2027 and 2028, targeting database implementations and Siemens S7 industrial control devices. […]
https://www.bleepingcomputer.com/news/security/malicious-nuget-packages-drop-disruptive-time-bombs/ - Microsoft testing faster Quick Machine Recovery in Windows 11
BleepingComputer • 2025-11-07 11:46 • www.bleepingcomputer.com
Microsoft is testing a faster version of Quick Machine Recovery (QMR) and updated Smart App Control (SAC), allowing users to toggle it without requiring a Windows clean install. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-testing-faster-quick-machine-recovery-in-windows-11/ - QNAP fixes seven NAS zero-day flaws exploited at Pwn2Own
BleepingComputer • 2025-11-07 10:24 • www.bleepingcomputer.com
QNAP has fixed seven zero-day vulnerabilities that security researchers exploited to hack QNAP network-attached storage (NAS) devices during the Pwn2Own Ireland 2025 competition. […]
https://www.bleepingcomputer.com/news/security/qnap-fixes-seven-nas-zero-day-vulnerabilities-exploited-at-pwn2own/ - New LandFall spyware exploited Samsung zero-day via WhatsApp messages
BleepingComputer • 2025-11-07 10:23 • www.bleepingcomputer.com
A threat actor exploited a zero-day vulnerability in Samsung’s Android image processing library to deploy a previously unknown spyware called ‘LandFall’ using malicious images sent over WhatsApp. […]
https://www.bleepingcomputer.com/news/security/new-landfall-spyware-exploited-samsung-zero-day-via-whatsapp-messages/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
