The Australian government is alerting about ongoing cyberattacks exploiting a severe vulnerability in unpatched Cisco IOS XE devices. Attackers are using the BadCandy webshell to gain control, with over 150 devices still compromised as of late October 2025. The Australian Signals Directorate is notifying affected users and urging prompt patching.