CyberWire Daily Message in the malware.
Nov 25, 2025
In this engaging discussion, Tim Starks, a Senior reporter at CyberScoop specializing in national security and technology policy, dives into the upcoming U.S. cyber strategy under the Trump administration. He breaks down its focus on imposing costs on adversaries and enhancing public-private partnerships. Tim also tackles the challenges of recruiting cyber talent in a politically charged environment and reflects on the implications for federal cybersecurity efforts. Plus, the conversation highlights rising threats like spyware and ransomware during the holiday season.
AI Snips
Chapters
Transcript
Episode notes
Messaging Apps Are High-Value Spyware Targets
- CISA warns multiple actors are using commercial spyware to target messaging app users who are high-value individuals.
- The spyware spreads via phishing, zero-click exploits, and app impersonation across the U.S., Middle East, and Europe.
Emergency Alert System Disrupted Nationwide
- A CodeRED compromise forced nationwide decommissioning and migration to a new emergency-alert platform.
- The breach exposed thousands of users' contact details and left many localities unable to send critical alerts.
NPM Supply-Chain Malware Returns With New Tricks
- The Shai-Hulud supply-chain malware reappeared in NPM with a two-stage loader that can propagate massively and wipe developer directories on auth failure.
- It now abuses random GitHub repos and CI tokens, prompting rapid defensive actions like blocking public registries and reviewing token scopes.