Daily Intelligence Brief: Trends in Security and Infrastructure for October 2025 - October 22, 2025

Cloudera and Chainguard announced a collaboration aimed at enhancing security for Cloudera's Data and Artificial Intelligence (AI) platform. This partnership integrates a “secure-by-default” philosophy at the container image level, decreasing the Common Vulnerabilities and Exposures (CVE) footprint by over 90%. The collaboration addresses security concerns raised by IT leaders as organizations increasingly adopt AI and hybrid cloud environments.

A recent survey by Cloudera indicated that 96% of IT leaders reported AI integration into their core processes, while 46% expressed concerns over associated security and compliance risks. The integration of Chainguard's hardened container images positions Cloudera’s platform to better manage open-source software vulnerabilities, which is crucial for organizations operating in regulated industries.

This initiative not only establishes a higher standard for security but also streamlines compliance processes with various regulatory frameworks, including Federal Risk and Authorization Management Program (FedRAMP) and DoD standards. Cloudera's enhanced platform aims to support organizations in financial services, healthcare, and government sectors that require rigorous compliance while leveraging data analytics and AI capabilities.

Snyk launched Evo, the first agentic security orchestration system dedicated to protecting AI-native applications. This new platform offers enterprises a comprehensive security framework addressing the growing complexities of AI usage across the software development lifecycle.

Evo integrates with the Snyk AI Security Platform, providing a unified experience to discover, test, govern, and secure AI systems. It allows security teams to operate effectively in an environment defined by AI's rapid evolution while managing a multitude of new threats and vulnerabilities.

The emerging landscape of agentic AI requires a continuous and adaptive security approach. Evo employs the OODA loop (Observe, Orient, Decide, Act) framework, empowering security teams to combat AI threats effectively. Key features include intelligent orchestration and a natural language policy creation tool that simplifies governance.

Applied Digital has entered into a 15-year lease agreement with a U.S. based investment-grade hyperscaler for 200 megawatts (MW) of IT capacity at the Polaris Forge 2 Campus near Harwood, North Dakota. The deal is projected to generate approximately $5 billion in total contracted revenue over the lease term, focusing on infrastructure for AI and High performance computing (HPC).

This agreement raises Applied Digital’s total leased capacity with two major hyperscalers to 600 Megawatt (MW) across its Polaris Forge campuses in North Dakota, underscoring the company's growth in AI infrastructure. The Polaris Forge 2 is designed for efficiency, with a projected Power Usage Effectiveness (PUE) of 1.18 and minimal water consumption.

Recent insights from Itential suggest that enterprise leaders are considering AI within automation strategies, though many report slower progress than anticipated. Many organizations have invested substantially in automation, but these efforts often lack the necessary integration for broader operational effectiveness.

Versa announced the automation of its Secure Software-Defined Wide Area Network (WAN) (SD-WAN) with Microsoft Entra Internet Access. This integration enhances the Security Service Edge (Security Services Edge (SSE)) solution, creating a Secure Access Service Edge (SASE) offering tailored for branch offices. The automated integration distinguishes Versa's application-aware Software-Defined Wide Area Network (SD-WAN) as one of a few in Microsoft’s SASE partner ecosystem, enabling automatic enforcement of security and networking policies.

CISA released advisories on vulnerabilities within Industrial Control Systems (ICS), advising users to implement security measures effectively. The agency highlights concerns over how many industrial systems are prone to exploitation, urging users to remain proactive. CISA also ceased updates for Siemens products, as a shift to vendor support becomes necessary for critical device security.

1. Cloudera partners with Chainguard to enhance security
   Cloudera and Chainguard's collaboration reduces open-source software vulnerabilities by over 90%, enhancing security for enterprise users.
2. Snyk launches Evo, a new AI-native security system
   Evo by Snyk integrates advanced security automation tools for AI-native applications, addressing evolving threats in software development.
3. Applied Digital eneters $5 billion lease with hyperscaler at Polaris Forge 2 in North Dakota
   Applied Digital secured a 15-year lease for 200 MW of IT capacity at Polaris Forge 2 in North Dakota, expected to yield $5 billion.
4. Acronis report shows differing career views of men and women in tech 2025
   Acronis' 2025 Women in Tech Report shows men and women have different perceptions of career opportunities in tech.
5. Verizon 2025 Mobile Security Index highlights rise in mobile attacks fueled by AI
   34% of organizations fear AI-powered attacks, prompting 75% to boost their mobile security investments in the face of rising threats.
6. Itential highlights orchestration's role in effective AI integration.
   Lumen's approach emphasizes foundational processes for effective AI integration.
7. Nextivity launched the CEL-FI QUATRA 100M, a 5G Direct-Attached Storage (DAS) solution supporting Internet of Things (IoT) networks
   Nextivity has released the CEL-FI QUATRA 100M, a Standalone (SA) 5G coverage solution for large spaces, enhancing IoT support.
8. Michael Emil Shafik recognized as a Pinnacle Professional Member Inner Circle of Excellence
   Michael Emil Shafik mentors young professionals and supports community initiatives alongside his career in tech.
9. Raisecomm RAX701-GC Series faces security vulnerability
   CISA recommends users of Raisecomm RAX701-GC products take steps to mitigate exploitation risk from an authentication bypass vulnerability.
10. CISA issues 10 advisories on ICS vulnerabilities
    CISA advises users to review new guidance on security vulnerabilities in ICS from major manufacturers.
11. CloudEdge App and Cameras have vulnerability
    CISA warns of a serious vulnerability in CloudEdge products that permits remote exploitation due to insecure credentialing.
12. Vulnerabilities Affect Rockwell Automation 1783-NATR
    CISA flags vulnerabilities in Rockwell's 1783-NATR equipment, advising defenses against potential exploitation risks.
13. Rockwell Automation alerts on GuardLogix 5370 vulnerability
    CISA recommends mitigating measures for the vulnerability in Rockwell Automation's Compact GuardLogix 5370 to enhance network security.
14. Vulnerabilities discovered in Oxford Nanopore's MinKNOW software
    MinKNOW software from Oxford Nanopore Technologies shows multiple vulnerabilities, impacting data security and sequencing processes.
15. Siemens alerts on RUGGEDCOM Robot Operating System (ROS) device vulnerabilities
    CISA stops updating advisories on Siemens ICS vulnerabilities after January 10, 2023. Users must refer to Siemens for current info.
16. CISA stops updates on Siemens SIMATIC S7-1200 Central Processing Unit (CPU) vulnerabilities
    CISA will cease updates on Siemens SIMATIC S7-1200 CPU V1/V2 security advisories. Siemens suggests network security measures.
17. Versa integrates Secure SD-WAN with Microsoft Entra Internet Access
    The integration streamlines operations and security policy enforcement for organizations accessing Software-as-a-Service (SaaS) applications.
18. Crucial launches DDR5 Pro Overclocking 6400 CL32 Gaming DRAM
    Crucial launched DDR5 Pro Overclocking 6400 CL32 Gaming DRAM, aimed at enhancing performance and aesthetics for gamers.
19. Illumio launches Insights Agent for tailored threat detection
    Illumio launched Insights Agent, aimed at reducing alert fatigue for security teams with role-specific threat alerts and guidance.
20. Cequence Security Expands Partner Program to Support Channel-Only Model
    Cequence Security formalizes its Partner Program, transitioning to a channel-only model with structured tiers and profitability incentives.