The Australian Signals Directorate (ASD) has issued a bulletin
about ongoing cyber attacks targeting unpatched Cisco IOS XE
devices in the country with a previously undocumented implant known
as BADCANDY. The activity, per the intelligence agency, involves
the exploitation of CVE-2023-20198 (CVSS score: 10.0), a critical
vulnerability that allows a remote, unauthenticated attacker to
create an
Read more https://thehackernews.com/2025/11/asd-warns-of-ongoing-badcandy-attacks.html
