A coordinated international law enforcement operation led by Dutch police, with support from the FBI and Finnish authorities, resulted in the seizure and shutdown of AVCheck, a widely used counter-antivirus service that cybercriminals employ to test and refine malware. This action is part of Operation Endgame targeting cybercrime infrastructure. Meanwhile, cybersecurity researchers have published detailed analyses of several critical vulnerabilities. Cisco disclosed a severe flaw in its IOS XE Wireless LAN Controller (WLC) software, tracked as CVE-2025-20188, rated with a CVSS score of 10.0 due to its ease of exploitation and potential impact. Qualcomm patched three zero-day vulnerabilities (CVE-2025-21479, CVE-2025-21480, CVE-2025-27038) affecting its Adreno GPU used in targeted Android attacks, some linked to spyware vendors like Variston and Cy4Gate. Google issued an emergency out-of-band patch for a high-severity Chrome zero-day vulnerability (CVE-2025-5419) in its V8 JavaScript engine, actively exploited through malicious HTML pages. Additionally, a cryptojacking campaign named JINX-0132 is exploiting DevOps servers, including Nomad, Docker, Gitea, and Consul, using publicly available GitHub tools to mine cryptocurrency, generating over $10,000 in compute resources. Google also announced plans to distrust two certificate authorities due to compliance issues. Finally, the Android Trojan Crocodilus has been detected in eight countries, targeting banking and cryptocurrency wallet users.