Fortinet actively exploited; Rokarolla targets 217 banking apps; Google Vertex AI flaw

This briefing reports multiple high-severity, actively exploited threats: three Fortinet FortiSandbox CVEs being exploited in the wild, the Rokarolla Android banking trojan targeting 217 banking and crypto apps, a Google Vertex AI SDK bucket‑squatting flaw allowing model hijacking and code execution, expansion of ClickFix campaigns with new loaders, and malicious JetBrains plugins stealing AI API keys; immediate patching, MDM controls, credential rotation, and monitoring are recommended.