This is today’s cyber news for October 13th, 2025. The brief leads with fresh exploitation against Oracle E-Business Suite and reports of SonicWall customer backup configurations viewed by attackers, raising concerns about blueprint-level exposure and data theft. We also cover an actively exploited Gladinet CentreStack/Triofox zero-day, a record ~30 Tbps “Aisuru” DDoS, and Apple doubling its top bug bounty to reshape exploit economics. Rounding out the day: payroll fraud via HR SaaS, poisoned npm packages, a GoAnywhere exploitation timeline, threat actors abusing Velociraptor, and high-volume smishing in New York—plus higher-ed extortion claims, KEV-listed Grafana risk, Windows 11 23H2 end-of-support, and more.

Listeners will hear clear, plain-English walk-throughs of what happened, why it matters, and exactly what to do next. It’s designed for leaders who need decisions, defenders who need signals to watch, and builders who keep pipelines safe—covering WordPress auth bypass, massive RDP probing, stealer campaigns packed with Node.js single executables, a phishing-as-a-service takedown in Spain, VirusTotal policy changes, a second Oracle EBS exposure, and Ukraine’s warning on AI-assisted attacks. There’s a narrated daily feed available at DailyCyber.news.