BMC Daily Cyber News

Daily Cyber News for September 25th, 2025. Today’s episode tracks a rapid-fire landscape where exploits move at disclosure speed and persistence hides below the operating system. We open with a GeoServer flaw weaponized within days against a U.S. federal agency, then shift to new Supermicro BMC issues that enable backdoors that survive wipe-and-rebuild. We cover election-season influence ops aimed at Moldova, a convincing PyPI phishing wave that targets software maintainers, and Cisco’s actively exploited SNMP bug on core network gear. Mid-brief, we examine Okta’s push to govern non-human identities, China-nexus campaigns like RedNovember and BRICKSTORM, and mobile security risk from a OnePlus SMS permissions bypass.

You’ll also hear practical takeaways on secure email gateways after a Libraesva flaw, a new “Obscura” ransomware strain, and a ShadowV2 botnet built from misconfigured Docker on AWS. We unpack airport disruptions linked to ransomware, critical fixes for SolarWinds Web Help Desk and Wondershare RepairIt, GitHub notification abuse for crypto theft, record-scale DDoS at 22.2 Tbps, and a Pandoc SSRF used to grab AWS metadata. Leaders, defenders, and builders get concrete steps throughout. The daily audio feed is available at dailycyber.news.