This week brings a fresh round of cybersecurity developments affecting critical infrastructure, online platforms, and major technology providers. From zero-days and phishing schemes to national guard mobilizations and data breaches, these stories hold relevance for organizations that serve people—nonprofits, schools, municipalities, healthcare, and faith-based communities.
October is Cybersecurity Awareness Month – Free Toolkit from KnowBe4
KnowBe4 has released a Cybersecurity Awareness Month kit for organizations looking to boost training and awareness. It includes posters, infographics, and an interactive quiz—helpful resources for any group trying to build a culture of security.
Read more on KnowBe4
Colt Telecom Disruption Tied to Cyberattack
A significant cyberattack took down services at telecom provider Colt, impacting customers across several countries. Organizations that rely on cloud communications should review redundancy and continuity strategies.
Read more on Infosecurity Magazine
Sweden’s Municipal Software Vendor Hit by Ransomware
A ransomware attack against a software supplier has disrupted operations across multiple Swedish municipalities. This illustrates the dangers of supply chain compromise and the ripple effect it can have on public services.
Read more on The Record
Discord Data-Scraping Raises Major Privacy Concerns
An investigation reveals that Discord bots and integrations are being exploited to scrape private messages. This issue reinforces the importance of reviewing integrations and bot permissions on platforms used for community interaction.
Read more on Cybernews
Hacker Claims to Dump PayPal Credentials
A hacker is selling what they claim are 100,000 PayPal credentials on a dark web forum. Whether fully verified or not, this is a good reminder to review credential reuse policies and enforce MFA.
Read more on Cybernews
Phishing Campaign Exploits ConnectWise Remote Tool
A new phishing campaign is abusing ConnectWise’s remote control feature to take over machines after luring victims via fake invoices. If your organization uses remote support tools, be sure policies and alerts are in place.
Read more on Infosecurity Magazine
Windows 10 Nears Retirement – Are You Ready?
Microsoft reminds users that Windows 10 support ends October 2025. Start assessing which systems may need upgrades or extended support to avoid compliance or security issues.
Read more on BleepingComputer
Apple Patches Exploited Zero-Day
Apple released patches for a zero-day vulnerability used in targeted attacks. Users should update devices immediately to prevent exploitation—especially those in high-risk roles or organizations.
Read more on SecurityWeek
Chrome and Firefox Patch High-Severity Flaws
Google and Mozilla issued security updates addressing multiple high-severity issues. Regular browser patching should be part of every organization’s basic cyber hygiene.
Read more on SecurityWeek
HopeNet reviews a variety of security news sources so you don’t have to! This list is curated specifically for churches, nonprofits, and other Organizations of Hope. The headlines and our added comments are meant to provide enough to get an overview of recent happenings, but links are also provided for readers who want to explore certain topics deeper.
If this was shared with you and you would like to receive a copy directly to your email, please sign up for this FREE newsletter at HopeNetCISO.com. Also, check out the Services section of our site for ways we can help! Thanks for reading!