This is today’s cyber news for October 30th, 2025. A broad Microsoft cloud outage led our coverage, reminding teams how identity and Domain Name System dependencies can stall entire workflows. Critical infrastructure risk followed, with Canada warning that hacktivists changed setpoints on exposed industrial gear. We then moved to active exploitation in factory software, a remote-code-execution flaw in XWiki driving cryptomining, and a coordinated wave of malicious Node Package Manager look-alikes harvesting tokens. The middle of the brief covered a four-terabyte backup exposure tied to a global consultancy, Android tap-to-pay relays, and a new leakage route from trusted enclaves on double data rate five hardware. We closed with botnets, stealthy espionage, plugin risk, regional cloud latency, data poisoning, and human-like Android malware.

Listeners will hear concise, four-sentence rundowns that stick to what happened and why it matters. Leaders get signal on business continuity, vendor timelines, third-party exposure, and fraud risks; defenders hear the mechanisms that made each incident possible so they can tune detection and response. It’s a fast scan of operational realities across cloud control planes, software supply chains, industrial networks, and mobile threats—useful for morning stand-ups and afternoon triage. The narrated feed is available at DailyCyber.news.