Hackers targeting Cisco IOS XE devices with BadCandy implant

A critical vulnerability in Cisco IOS XE is being exploited to install an implant called BadCandy in a renewed wave of ...
The Hacker News

ASD Warns of Ongoing BADCANDY Attacks Exploiting Cisco IOS XE Vulnerability

The activity, per the intelligence agency, involves the exploitation of CVE-2023-20198 (CVSS score: 10.0), a critical ...

Badcandy: Old Cisco IOS XE vulnerability still misused thousands of times

An update against the Cisco IOS XE vulnerability CVE-2023-20198 has been available since 2023. The Shadowserver Foundation ...
The Register on MSN

Attackers targeting unpatched Cisco kit notice malware implant removal, install it again

PLUS: Cyber-exec admits selling secrets to Russia; LastPass isn't checking to see if you're dead; Nation-state backed Windows ...
SDxCentral

Cisco users face BadCandy in latest threat to network giant

Dubbed BadCandy, the implant affects Cisco IOS XE devices with a basic web shell based on Lua coding. The attack takes ...

Scores of Australian Cisco devices remain BADCANDY infected

More than 150 Australian Cisco routers and switches remain infected with the BADCANDY webshell as of late October 2025, ...

Australia warns of BadCandy infections on unpatched Cisco devices

The Australian government is warning about ongoing cyberattacks against unpatched Cisco IOS XE devices in the country to ...
Cyber Daily

Aussie cyber agency warns of state and criminal actors abusing BADCANDY implant

The ASD's Australian Cyber Security Centre says there are more than 150 compromised Cisco IOS XE devices embedded in Australian organisations.
CSOonline

Patch now: Attacker finds another zero day in Cisco firewall software

A critical zero-day vulnerability in certain Cisco Systems firewalls has to be patched immediately, US and UK cyber authorities warned Thursday. They said exploits of the hole are part of ongoing ...