Cyber Security Headlines Australia BadCandy warning, Cisco firewall attack, Aardvark eats bugs
7 snips
Nov 3, 2025 Australia is sounding the alarm on BADCANDY attacks targeting unpatched Cisco devices. The podcast details how Storm 1849, linked to Chinese hackers, exploits Cisco ASA firewalls used globally. In a groundbreaking development, OpenAI's Aardvark GPT-5 agent automates the detection and fixing of code flaws. Other highlights include discussions on the FCC's controversial plans to roll back cybersecurity mandates for telecoms, and rising NFC relay malware incidents in Europe targeting payment card data.
AI Snips
Chapters
Transcript
Episode notes
Bad Candy Targets Unpatched Cisco IOS XE
- Australia warns of a Lua-based web shell called Bad Candy exploiting unpatched Cisco IOS XE devices.
- The implant lacks persistence but reintroduction is possible if devices remain exposed and unpatched.
Storm 1849 Exploits Cisco ASA At Scale
- Palo Alto Unit 42 links China-based Storm 1849 to intrusions against Cisco ASA firewalls used by governments and critical orgs.
- Attacks were observed against U.S. financial institutions, defense contractors, and military organizations in October.
Aardvark Embeds Into Dev Pipelines
- OpenAI's Aardvark GPT-5 agent embeds into dev pipelines to detect, model, and propose fixes for security issues automatically.
- It produces a threat model and scans repository history to find both existing and new vulnerabilities.