{"id":290,"date":"2025-11-01T08:00:00","date_gmt":"2025-11-01T15:00:00","guid":{"rendered":"https:\/\/hexagoncenter.org\/spotlight\/?p=290"},"modified":"2025-10-31T22:42:24","modified_gmt":"2025-11-01T05:42:24","slug":"this-week-in-hx-weekly-october-26-2025-to-november-2-2025","status":"publish","type":"post","link":"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/","title":{"rendered":"This week in HX Weekly (October 26, 2025 to November 2, 2025)"},"content":{"rendered":"\n<p>This week&#8217;s cybersecurity landscape was dominated by active exploitation of critical flaws, including unpatched Cisco IOS XE devices being infected with webshells and CISA warning about actively exploited VMware and XWiki vulnerabilities.<\/p>\n\n\n\n<p>Meanwhile, a sophisticated phishing scam targeted LastPass users with fake &#8220;death claims&#8221; emails to steal Master Passwords, a financially motivated campaign linked to the CryptoChameleon group, highlighting the continued threat of social engineering alongside nation-state activity exploiting flaws in Windows and targeting critical infrastructure.<\/p>\n\n\n\n<p>\ud83d\udea8 Major Exploits &amp; Vulnerabilities<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Cisco IOS XE Attacks: Active exploitation of a vulnerability in unpatched Cisco IOS XE devices continues, with reports of attackers infecting routers with the BadCandy webshell. Organizations are strongly urged to patch immediately.<\/li>\n\n\n\n<li>VMware &amp; XWiki Flaws: CISA added actively exploited vulnerabilities in Broadcom VMware Tools (escalation of privilege) and XWiki Platform (remote code execution) to its Known Exploited Vulnerabilities (KEV) catalog, requiring federal agencies to patch.<\/li>\n\n\n\n<li>Windows Flaws Exploited: Multiple Windows-related flaws are being exploited, including a Windows shortcut flaw used by China-linked hackers (Mustang Panda) targeting European diplomats, and an exploited flaw in Windows Server Update Services (WSUS).<br>\ud83c\udfa3 Phishing &amp; Threat Campaigns<\/li>\n\n\n\n<li>Fake LastPass Death Claims: A high-profile phishing campaign is targeting LastPass users with urgent emails claiming a legacy\/death request has been opened for their vault, leading users to a fake login page to steal their Master Password.<\/li>\n\n\n\n<li>Malicious NPM Packages: New malicious packages have been found on the npm repository that download an infostealer to compromise Windows, Linux, and macOS systems.<\/li>\n\n\n\n<li>LinkedIn Phishing: Hackers are using direct messages on LinkedIn to target finance executives with fake executive board invitations, aiming to steal their Microsoft credentials.<br>\u2699\ufe0f Industry &amp; Policy News<\/li>\n\n\n\n<li>Critical Infrastructure Breaches: Reports indicate that hacktivist groups have breached multiple critical infrastructure systems across Canada, targeting water and energy facilities.<\/li>\n\n\n\n<li>AI in Security: OpenAI unveiled a new security agent, Aardvark (or similar GPT-5-powered agent), focused on automatically finding and fixing code flaws. Palo Alto Networks also launched a comprehensive AI security platform, Prisma AIRS 2.0.<\/li>\n\n\n\n<li>Extradition &amp; Arrests: A Ukrainian man was successfully extradited to the U.S. to face charges related to the Conti ransomware group. Separately, Russian authorities reportedly arrested individuals believed to be behind the Meduza infostealer malware.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>This week&#8217;s cybersecurity landscape was dominated by active exploitation of critical flaws, including unpatched Cisco IOS XE devices being infected with webshells and CISA warning about actively exploited VMware and XWiki vulnerabilities. Meanwhile, a sophisticated phishing scam targeted LastPass users with fake &#8220;death claims&#8221; emails to steal Master Passwords, a financially motivated campaign linked to [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-290","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>This week in HX Weekly (October 26, 2025 to November 2, 2025) - HX Spotlight Files<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"This week in HX Weekly (October 26, 2025 to November 2, 2025) - HX Spotlight Files\" \/>\n<meta property=\"og:description\" content=\"This week&#8217;s cybersecurity landscape was dominated by active exploitation of critical flaws, including unpatched Cisco IOS XE devices being infected with webshells and CISA warning about actively exploited VMware and XWiki vulnerabilities. Meanwhile, a sophisticated phishing scam targeted LastPass users with fake &#8220;death claims&#8221; emails to steal Master Passwords, a financially motivated campaign linked to [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/\" \/>\n<meta property=\"og:site_name\" content=\"HX Spotlight Files\" \/>\n<meta property=\"article:published_time\" content=\"2025-11-01T15:00:00+00:00\" \/>\n<meta name=\"author\" content=\"Editorial\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Editorial\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\\\/\"},\"author\":{\"name\":\"Editorial\",\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/#\\\/schema\\\/person\\\/2f8219c99512366965821b725b05cbb8\"},\"headline\":\"This week in HX Weekly (October 26, 2025 to November 2, 2025)\",\"datePublished\":\"2025-11-01T15:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\\\/\"},\"wordCount\":375,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/#organization\"},\"articleSection\":[\"Default\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\\\/\",\"url\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\\\/\",\"name\":\"This week in HX Weekly (October 26, 2025 to November 2, 2025) - HX Spotlight Files\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/#website\"},\"datePublished\":\"2025-11-01T15:00:00+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"This week in HX Weekly (October 26, 2025 to November 2, 2025)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/#website\",\"url\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/\",\"name\":\"HX Spotlight Files\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/#organization\",\"name\":\"HX Spotlight Files\",\"url\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/logo.webp\",\"contentUrl\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/logo.webp\",\"width\":338,\"height\":72,\"caption\":\"HX Spotlight Files\"},\"image\":{\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/#\\\/schema\\\/person\\\/2f8219c99512366965821b725b05cbb8\",\"name\":\"Editorial\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/9314bba5e6586f27b7eb074fdb0b5601ac3c14d10a8e559210e60bb9d69b4f4f?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/9314bba5e6586f27b7eb074fdb0b5601ac3c14d10a8e559210e60bb9d69b4f4f?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/9314bba5e6586f27b7eb074fdb0b5601ac3c14d10a8e559210e60bb9d69b4f4f?s=96&d=mm&r=g\",\"caption\":\"Editorial\"},\"url\":\"https:\\\/\\\/hexagoncenter.org\\\/spotlight\\\/author\\\/ldsdaniel\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"This week in HX Weekly (October 26, 2025 to November 2, 2025) - HX Spotlight Files","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/","og_locale":"en_US","og_type":"article","og_title":"This week in HX Weekly (October 26, 2025 to November 2, 2025) - HX Spotlight Files","og_description":"This week&#8217;s cybersecurity landscape was dominated by active exploitation of critical flaws, including unpatched Cisco IOS XE devices being infected with webshells and CISA warning about actively exploited VMware and XWiki vulnerabilities. Meanwhile, a sophisticated phishing scam targeted LastPass users with fake &#8220;death claims&#8221; emails to steal Master Passwords, a financially motivated campaign linked to [&hellip;]","og_url":"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/","og_site_name":"HX Spotlight Files","article_published_time":"2025-11-01T15:00:00+00:00","author":"Editorial","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Editorial","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/#article","isPartOf":{"@id":"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/"},"author":{"name":"Editorial","@id":"https:\/\/hexagoncenter.org\/spotlight\/#\/schema\/person\/2f8219c99512366965821b725b05cbb8"},"headline":"This week in HX Weekly (October 26, 2025 to November 2, 2025)","datePublished":"2025-11-01T15:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/"},"wordCount":375,"commentCount":0,"publisher":{"@id":"https:\/\/hexagoncenter.org\/spotlight\/#organization"},"articleSection":["Default"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/","url":"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/","name":"This week in HX Weekly (October 26, 2025 to November 2, 2025) - HX Spotlight Files","isPartOf":{"@id":"https:\/\/hexagoncenter.org\/spotlight\/#website"},"datePublished":"2025-11-01T15:00:00+00:00","breadcrumb":{"@id":"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/hexagoncenter.org\/spotlight\/this-week-in-hx-weekly-october-26-2025-to-november-2-2025\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/hexagoncenter.org\/spotlight\/"},{"@type":"ListItem","position":2,"name":"This week in HX Weekly (October 26, 2025 to November 2, 2025)"}]},{"@type":"WebSite","@id":"https:\/\/hexagoncenter.org\/spotlight\/#website","url":"https:\/\/hexagoncenter.org\/spotlight\/","name":"HX Spotlight Files","description":"","publisher":{"@id":"https:\/\/hexagoncenter.org\/spotlight\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/hexagoncenter.org\/spotlight\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/hexagoncenter.org\/spotlight\/#organization","name":"HX Spotlight Files","url":"https:\/\/hexagoncenter.org\/spotlight\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/hexagoncenter.org\/spotlight\/#\/schema\/logo\/image\/","url":"https:\/\/hexagoncenter.org\/spotlight\/wp-content\/uploads\/2023\/04\/logo.webp","contentUrl":"https:\/\/hexagoncenter.org\/spotlight\/wp-content\/uploads\/2023\/04\/logo.webp","width":338,"height":72,"caption":"HX Spotlight Files"},"image":{"@id":"https:\/\/hexagoncenter.org\/spotlight\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/hexagoncenter.org\/spotlight\/#\/schema\/person\/2f8219c99512366965821b725b05cbb8","name":"Editorial","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/9314bba5e6586f27b7eb074fdb0b5601ac3c14d10a8e559210e60bb9d69b4f4f?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/9314bba5e6586f27b7eb074fdb0b5601ac3c14d10a8e559210e60bb9d69b4f4f?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/9314bba5e6586f27b7eb074fdb0b5601ac3c14d10a8e559210e60bb9d69b4f4f?s=96&d=mm&r=g","caption":"Editorial"},"url":"https:\/\/hexagoncenter.org\/spotlight\/author\/ldsdaniel\/"}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/hexagoncenter.org\/spotlight\/wp-json\/wp\/v2\/posts\/290","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hexagoncenter.org\/spotlight\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hexagoncenter.org\/spotlight\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hexagoncenter.org\/spotlight\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/hexagoncenter.org\/spotlight\/wp-json\/wp\/v2\/comments?post=290"}],"version-history":[{"count":1,"href":"https:\/\/hexagoncenter.org\/spotlight\/wp-json\/wp\/v2\/posts\/290\/revisions"}],"predecessor-version":[{"id":291,"href":"https:\/\/hexagoncenter.org\/spotlight\/wp-json\/wp\/v2\/posts\/290\/revisions\/291"}],"wp:attachment":[{"href":"https:\/\/hexagoncenter.org\/spotlight\/wp-json\/wp\/v2\/media?parent=290"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hexagoncenter.org\/spotlight\/wp-json\/wp\/v2\/categories?post=290"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hexagoncenter.org\/spotlight\/wp-json\/wp\/v2\/tags?post=290"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}