Google's Threat Intelligence Group has reported that financially motivated threat actors are targeting fully patched but end-of-life SonicWall Secure Mobile Access (SMA) 100 series appliances with a likely zero-day vulnerability. This ongoing campaign involves tailored backdoor malware and rootkit attacks, posing risks to a broad range of connected devices. Separately, Google has filed a lawsuit against 25 alleged operators of the BadBox 2.0 botnet, which has compromised Android Internet of Things (IoT) devices such as TV streaming devices, tablets, and projectors. The botnet operators are reportedly based in China. In addition, Cisco has released a critical patch for a vulnerability (CVE-2025-20337) in its Identity Services Engine, which carries a CVSS severity score of 10 and allows pre-authentication command execution. The combination of these cybersecurity threats highlights ongoing risks to enterprise and consumer devices globally.