Brief #117: Cisco CVSS 10.0 RCE Flaw, ChatGPT Prompt Hijacking, Security Budgets Drop

Nikoloz Kokhreidze

August 17, 2025

9 min read

LayerX researchers expose "Man-in-the-Prompt" attacks turning AI assistants into hacking copilots. CISA releases zero trust microsegmentation guidance as Python skills become mandatory for 50%+ of cyber jobs.

Brief #117: Cisco CVSS 10.0 RCE Flaw, ChatGPT Prompt Hijacking, Security Budgets Drop

Happy Sunday!

Security budgets hitting a five-year low while threats keep escalating feels like trying to fill a bucket with a bigger hole in the bottom each year.

In this week's brief:

Cisco patches a maximum severity vulnerability that lets attackers execute remote code on firewall management systems
New "Man-in-the-Prompt" attacks turn your favorite AI tools into potential data theft machines
Python skills now showing up in half of all cybersecurity job postings - time to dust off those coding tutorials

Let's dive in.

Member-Only Content

Join Mandos to Continue Reading

Get instant access to this article and the Mandos Brief - your weekly 10-minute security leadership update.

Already a member? Sign in

Nikoloz Kokhreidze

Share With Your Network

Check out these related posts

mandos brief newsletter for cybersecurity leaders and professionals

Brief #116: Microsoft Exchange RCE, Google Salesforce Breach, AI SOC Market

Mandos newsletter for cybersecurity professionals and leaders by nikoloz kokhreidze

Brief #115: Palo Alto's $25B CyberArk Acquisition, Microsoft OAuth MFA Bypass, 45% Insecure AI Code

mandos cybersecurity newsletter for leaders and professionals by nikoloz kokhreidze

Brief #114: Microsoft SharePoint Zero-Day, Amazon AI Hacked, 97% AI Incidents