Daily Cyber News – November 11th, 2025

https://is1-ssl.mzstatic.com/image/thumb/Podcasts211/v4/c8/26/d1/c826d150-1a26-5c5f-2b05-57c10e4c8cea/mza_10553600598362386170.jpg/600x600bb.jpg

BMC Daily Cyber News

Jason Edwards

59 episodes

2 days ago

The BCM Daily Cyber News brings you clear, timely updates on threats, breaches, patches, and trends every day. Stay informed in minutes with focused audio built for busy professionals. Learn more and explore at BareMetalCyber.com.

All content for BMC Daily Cyber News is the property of Jason Edwards and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Tech News

Technology,

News

Daily Cyber News – November 11th, 2025

BMC Daily Cyber News

7 minutes

1 month ago

Daily Cyber News – November 11th, 2025

This is today’s cyber news for November 11th, 2025. We open with a federal push to patch a Samsung zero-day powering stealth phone spyware, then move to a North Korea–linked abuse of Google’s device-finding features as a remote kill switch. Developer ecosystems are in focus as booby-trapped Visual Studio Code extensions siphon secrets, while a breach at Knownsec exposes state-grade tools and target lists. Rounding out the first half, a turnkey kit reroutes victims to steal Microsoft 365 logins and tokens, underscoring how cheaply mass account takeover still happens in busy enterprises.

In the back half, we cover a fresh attack variant that crashes unpatched Cisco firewalls, a tiny JavaScript parser flaw that enables remote code execution, and NuGet “time-bombs” designed to detonate well after deployment. We then detail unsafe deserialization in LangGraph that lets attackers hijack AI pipelines on load, and a Monsta FTP bug that left thousands of servers open to takeover. Leaders, defenders, and builders get plain-English impact, who is most exposed, and practical signals to watch—available at DailyCyber.news.