A critical remote code execution (RCE) vulnerability in the Aviatrix Controller has been exploited in the wild, leading to cryptojacking and backdoor deployment. This flaw has a CVSS score of 10.0, indicating its severity. Research from Wiz.io highlights the risks associated with this vulnerability, which is reshaping the landscape of cloud security threats. In related cybersecurity news, Microsoft has issued patches for 159 Common Vulnerabilities and Exposures (CVEs) in January 2025, the largest number addressed in a single month since at least 2017. This includes a fix for a flaw that allowed unauthorized access to Windows 11 by bypassing Secure Boot for over seven months. Additionally, vulnerabilities in WGS-804HPT switches have been identified, allowing for remote code execution, with critical scores of 9.8 assigned to two of the flaws, CVE-2024-52320 and CVE-2024-48871. These developments underscore the ongoing challenges in cybersecurity and the importance of timely updates and patches.