CTI Roundup: ClickFix, New Attacker Insights, PXA Stealer
ClickFix campaign exploits CAPTCHAs, attack activity spikes ahead of CVE disclosures, and Vietnamese-speaking threat group deploys PXA Stealer.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
From Fragmented to Unified: Driving Autonomous Endpoint Management Across Mobile and Computing Devices with the Tanium Connector for Microsoft Intune
The Tanium Connector for Microsoft Intune enables organizations to unify, manage, and report on all their endpoints—including those across multiple Intune tenants—through a single platform, streamlining security and operations workflows.
Using Mean Time to Resolve (MTTR) Effectively Across Static and SCA Findings
Customers that have embraced DevOps often ask me for the best metrics to measure their program. I always advocate focusing on policy compliance as the number one metric for understanding your risk, as this provides a succinct measurement of the security of your applications. However, if you are looking to measure and motivate development teams, policy compliance doesn’t give you the granularity to introduce gamification or incentives.
CVE-2025-25256: PoC Available for FortiSIEM Remote Unauthenticated Command Injection Vulnerability
On August 12, 2025, Fortinet released fixes for a critical-severity vulnerability in FortiSIEM, tracked as CVE-2025-25256. The flaw arises from improper neutralization of special elements used in an OS command within the phMonitor service (TCP/7900). Successful exploitation could allow a remote, unauthenticated threat actor to execute unauthorized code or commands via crafted CLI requests.
When Hackers Call: Social Engineering, Abusing Brave Support, and EncryptHub's Expanding Arsenal
Trustwave SpiderLabs researchers have recently identified an EncryptHub campaign that combines social engineering with abuse of the Brave Support platform to deliver malicious payloads via the CVE-2025-26633 vulnerability. In this blog post, we will break down the techniques used in the campaign and highlight the new tools employed by the threat group.
The New Guy (a.k.a. Agentic AI)
AI agents have already caused unintended record updates, broken workflows, and pushed flawed logic into production systems. These misfires often go unnoticed until forecasts stall, pipelines break, or sensitive data is affected. These aren’t hallucinations. They’re executed actions with real consequences. At Rubrik, we’ve spent years helping enterprises recover from ransomware, insider threats, and operational errors. The pattern is always the same: Damage happens fast. The root cause is murky. And visibility is fragmented.
Agent Rewind: For When AI Agents Go Awry
Agent Rewind, powered by Predibase AI infrastructure, will enable organizations to undo mistakes made by agentic AI by providing visibility into agents' actions and enabling enterprises to rewind those changes to applications and data.
The Unopinionated AI Advantage
Most AI security solutions lock you into their way of doing things. The result? You can't differentiate, you can't innovate, and you can't build the solutions your organization actually needs. LimaCharlie's approach to AI is fundamentally different. Instead of forcing you into rigid workflows, we give you the building blocks to create exactly what your environment demands. Why this matters: The result: Security teams that build custom AI solutions perfectly tailored to their environment, their workflows, and their unique challenges.
Enterprise-Grade Automation, Communication, and Risk: Nucleus Q2 Updates
This release raises the bar for enterprise-grade vulnerability and exposure management. We’re delivering on the promise of smarter, faster risk reduction powered by automation, enriched data, and operational depth. From fix-level SLA tracking to scalable API workflows and stakeholder-ready reporting, every enhancement is designed to help teams do more with less, and prove it. Here’s a breakdown of some of the major product updates from Q2 2025.
Automate Repetitive Work With No-Code AI Agent Builder
Egnyte AI agents are smart, task-specific AI assistants built to automate repetitive, time-consuming work, so that your team can stay focused on high-impact and strategic tasks. From reviewing documents to researching topics or translating content, these agents act like always-on digital coworkers who execute task-specific instructions while securely leveraging information contained in your private documents and on the web.