Microsoft patched several remote code execution vulnerabilities affecting GitHub Copilot and multiple IDEs including VS Code, Visual Studio, and JetBrains products. The vulnerabilities stem from command injection flaws triggered through prompt injection, where threat actors could embed malicious prompts into codebases leading to remote code execution.

Source: CSO Online

Anthropic's Model Context Protocol (MCP) proved to be missing connective tissue and is quickly becoming the standard. OpenAI and Microsoft have publicly embraced MCP, and Anthropic donated it to the Linux Foundation's new Agentic AI Foundation. With MCP reducing friction of connecting agents to real systems, 2026 is likely the year agentic workflows move from demos into day-to-day practice.

Source: TechCrunch

Many leaders find agentic AI is increasing operational friction instead of improving productivity by adding pressure to systems and amplifying underlying flaws. Companies need a field-tested, repeatable blueprint with a strategic orchestration framework to guide organizations from initial strategy to a cohesive ecosystem of intelligent agents.

Source: Harvard Business Review

The transition from passive chatbots to autonomous agents has fundamentally altered the threat landscape with the rise of 'agent hijacking' as a primary attack vector, evidenced by the 'BodySnatcher' vulnerability in ServiceNow and persistent 'ZombieAgent' exploits. Predictions identify agency hijacking as the top attack vector for 2026.

Source: Adversa AI

OpenAI released GPT-5.3-Codex on February 5, 2026, marking a significant advancement in AI-powered coding with higher performance than rival systems. The model is being rolled out with tight controls due to serious cybersecurity concerns, as it's the first OpenAI model to hit 'high' on their cybersecurity risk framework.

Source: Fortune

OpenAI announced GPT-5.3-Codex-Spark on February 12, 2026, a lightweight version designed for faster inference powered by Cerebras' Wafer Scale Engine 3 chip. This marks the first milestone in OpenAI's multi-year, $10+ billion partnership with Cerebras announced in January.

Source: TechCrunch

OpenAI retired several legacy models including GPT-5, GPT-4o, GPT-4.1, and GPT-4.1 mini from ChatGPT on February 13, 2026. The decision was driven by low adoption as users shifted to newer models like GPT-5.2.

Source: StartupNews.fyi

Business Standard reported on February 13, 2026, that OpenAI would retire several ChatGPT models including GPT-5 and GPT-4o at 11:30 PM IST. The company simultaneously launched GPT-5.3-Codex-Spark for real-time coding and introduced a new macOS app for the Codex platform.

Source: Business Standard

Microsoft's February 11, 2026 Patch Tuesday addressed 58 security vulnerabilities including 6 actively exploited zero-days and 5 critical vulnerabilities. The patches included fixes for Desktop Window Manager, Windows Remote Desktop, and Microsoft Word security bypass flaws.

Source: BleepingComputer

Microsoft released its February 2026 Patch Tuesday update addressing 58 vulnerabilities, including 6 actively exploited zero-day vulnerabilities. The zero-days include CVE-2026-21510 (Windows Shell bypass), CVE-2026-21513 (MSHTML bypass), CVE-2026-21514 (Word bypass), CVE-2026-21519 (Desktop Window Manager privilege escalation), CVE-2026-21533 (Remote Desktop Services privilege escalation), and CVE-2026-21525 (Remote Access Connection Manager DoS).

Source: BleepingComputer

n8n patched CVE-2026-25049 (CVSS 9.4), a critical command execution vulnerability that bypasses safeguards put in place to fix CVE-2025-68613. The flaw allows attackers to escape the n8n expression sandbox and execute system commands through publicly accessible webhooks. n8n also fixed 11 other vulnerabilities including 5 critical-severity flaws.

Source: The Hacker News

BeyondTrust released patches for CVE-2026-1731, a critical pre-authentication remote code execution vulnerability (CVSS 9.9) affecting Remote Support and Privileged Remote Access products. The flaw was discovered by Hacktron AI through AI-enabled variant analysis. Approximately 11,000 instances are exposed to the internet, with 8,500 being on-premises deployments that require manual patching.

Source: The Hacker News

Microsoft patched 54 CVEs in February 2026 with 2 rated critical and 51 important. The release included 6 actively exploited zero-days and 3 publicly disclosed vulnerabilities. CVE-2026-21510 affects Windows Shell with a CVSS score of 8.8, while CVE-2026-21511 is a spoofing vulnerability in Outlook rated as 'Exploitation More Likely' on Microsoft's index.

Source: Tenable

Microsoft's February 2026 Patch Tuesday shows an extraordinarily high number of actively exploited bugs (6 zero-days) compared to just one exploited bug in January despite fewer total CVEs. Notable exploited vulnerabilities include CVE-2026-21510 (Windows Shell bypass enabling code execution), CVE-2026-21525 (unusual DoS bug being actively exploited), and CVE-2026-21519 (second month of DWM exploitation suggesting incomplete previous fix).

Source: Zero Day Initiative

In early February 2026, security researchers identified multiple attack vectors within GitHub Codespaces that allow remote code execution (RCE) when users open malicious repositories or pull requests. A newly discovered vulnerability allows remote code execution through malicious repositories, posing significant risks to developers with potential exposure of source code repositories and developer credentials.

Source: Aviatrix

Support for queuing prompts in chat conversations allows submitting a second prompt while the first is still running, automatically processing once the current task completes, useful when your next prompt depends on the result or code changes made by the current prompt. VS Code now respects metered network connections, postponing automatic updates for itself and extensions when connected via mobile data, with a new proposed API for extensions to detect metered connections.

Source: Visual Studio Code

VS Code January 2026 release expands multi‑agent capabilities with Claude compatibility, Plan and hooks, advanced agent sessions, Copilot memory and external indexing, terminal sandboxing, an integrated browser, plus performance and security boosts. Release date: February 4, 2026 Update 1.109.1: The update addresses these security issues.

Source: Releasebot

AWS released Claude Opus 4.6, Anthropic's most intelligent model, in Amazon Bedrock. Amazon CloudFront added mutual TLS support for origins, providing standardized certificate-based authentication. Amazon DynamoDB global tables now support replication across multiple AWS accounts for improved resiliency.

Source: AWS News Blog

Amazon Bedrock enhanced support for agent workflows with server-side tools and extended prompt caching with 1-hour TTL option. Amazon SageMaker Unified Studio added private VPC connectivity with AWS PrivateLink. Amazon S3 now supports changing object encryption without data movement.

Source: AWS News Blog

Amazon announced a $200 billion capital expenditure investment for fiscal year 2026, primarily focused on AWS AI infrastructure. Amazon will invest $200 billion in capital expenditures throughout its fiscal year 2026, with a primary focus on AWS, CEO Andy Jassy said during the company's Q4 2025 earnings call Thursday. AWS achieved its fastest quarterly growth since 2022.

Source: CIO Dive

Amazon reported Q4 2025 net sales of $213.4 billion (up 14% YoY) with AWS growing 24% to $35.6 billion - the fastest growth in 13 quarters. Amazon.com has reported fourth quarter 2025 net sales of $213.4 billion (up 14% year-over-year) and full-year 2025 net sales of $716.9 billion (up 12%), with AWS growing 24% to $35.6 billion in Q4—the fastest growth in 13 quarters Amazon's custom chips (Trainium and Graviton) reached $10 billion annual revenue run rate.

Source: About Amazon

Report documented an attack that abused Amazon Bedrock models for LLMjacking and provisioned GPU-based EC2 instances using JupyterLab. The attack further abused Amazon Bedrock models for LLMjacking and provisioned GPU-based EC2 instances using JupyterLab to exploit resources, pivoting rapidly across 19 AWS principals. The attack highlights new AI-powered threats against AWS infrastructure.

Source: Check Point Research

A critical vulnerability (CVSS 10.0) was identified in React Server Components protocol allowing remote code execution. All Next.js 13.x, 14.x, 15.x and 16.x users were advised to upgrade immediately. The vulnerability originated in upstream React implementation (CVE-2025-55182).

Source: Next.js Official Blog

Two additional vulnerabilities identified in React Server Components: high-severity Denial of Service (CVE-2025-55184) and medium-severity Source Code Exposure (CVE-2025-55183). Initial fixes were incomplete, requiring users to upgrade again to latest patched versions.

Source: Next.js Official Blog

Critical unauthenticated RCE vulnerability in React Server Components affecting Next.js with near-100% exploitation reliability. Default configurations are vulnerable and exploitation has been observed in the wild with attempts to steal cloud credentials and install cryptomining malware.

Source: Wiz Blog

JavaScript developer survey shows disquiet with popular tools including Next.js. Community preferences are shifting toward Vite toolchain with 56% positive sentiment versus lower satisfaction rates for traditional bundlers. Survey suggests 2026 is the year to opt into the Vite ecosystem.

Source: DevClass