October 15th, 2025. This is today’s cyber news for October 15th, 2025. We lead with new research showing widespread eavesdropping risk on geostationary satellite traffic, then pivot to Microsoft’s heavy Patch Tuesday and the end of free support for Windows 10. You’ll also hear how the U.K. is grappling with a sharp rise in nationally significant incidents, why a no-permission “Pixnapping” side channel on Android puts on-screen codes at risk, and how a China-nexus group quietly turned ArcGIS Server into a long-term backdoor. The thread: attackers exploiting blind spots—infrastructure we assumed was safe, legacy tech, and overlooked supply chains.

Across the rest of the brief, we cover firmware and cloud trust cracks (Secure Boot shells on Framework laptops, “RMPocalypse” undermining AMD SEV-SNP), developer-ecosystem threats (tainted VS Code extensions, npm/PyPI/RubyGems exfil, unpkg-abusing phishing), and brute-force pressure from a 100K-node RDP botnet. We address Fortinet flaws, Microsoft’s curbs on Edge IE Mode, a record $15B seizure against pig-butchering scammers, Exchange 2016/2019 end-of-support, Astaroth’s steganography, TA585’s layered delivery, OpenAI-brand phish, and the “PolarEdge” IoT backdoor. The narrated daily is available at DailyCyber.news.