On February 17, 2026, NIST's Center for AI Standards and Innovation (CAISI) announced the launch of the AI Agent Standards Initiative to ensure AI agents capable of autonomous actions can function securely and interoperate across digital ecosystems. The initiative aims to foster industry-led AI standards while cementing U.S. dominance at the technological frontier.

Source: NIST

Within three weeks of popularity, OpenClaw became the focal point of a multi-vector security crisis involving critical remote code execution vulnerability CVE-2026-25253, and large-scale supply-chain poisoning campaign. On February 14, 2026, creator Peter Steinberger announced joining OpenAI to lead personal agent development. Exposed instances grew from 1,000 to over 21,000 between January 25-31, 2026, with some studies identifying over 42,000 exposed instances.

Source: Conscia

UC Berkeley's Center for Long-Term Cybersecurity released a 67-page Agentic AI Risk-Management Standards Profile addressing risks from autonomous AI agents, extending the NIST AI Risk Management Framework to account for threats like reward hacking and self-proliferation. The release coincides with rapid deployment of agentic systems across advertising and enterprise platforms where AI agents execute actions with minimal human oversight.

Source: Marketing Profs

Peter Steinberger joined OpenAI on February 15, 2026, the same week security researchers exposed critical vulnerabilities in OpenClaw, while Hudson Rock detected the first infostealer campaign targeting OpenClaw configuration files on February 13, 2026. Kaspersky found nearly 1,000 publicly accessible instances with no authentication, while CVE-2026-25253 enables one-click code smuggling through prompt injection.

Source: UC Strategies

OpenAI released GPT-5.3-Codex on February 5, 2026, marking their first model designated 'high-capability' for cybersecurity tasks. The model shows significantly higher performance on coding benchmarks but raises serious dual-use cybersecurity concerns, prompting OpenAI to implement tight controls and delay full developer access.

Source: Fortune

OpenAI introduced Lockdown Mode on February 13, 2026, an advanced security setting for high-risk users like executives and security teams. The update also includes 'Elevated Risk' labels for capabilities that may introduce additional cybersecurity risks across ChatGPT, Atlas, and Codex platforms.

Source: OpenAI (via Releasebot)

GPT-5.3-Codex helped debug its own training process and represents OpenAI's first model designated 'high-capability' for cybersecurity tasks. The model focuses on creating agents that can write code and perform all developer tasks on a computer, advancing beyond previous Codex models' coding-only focus.

Source: The New Stack

Microsoft released security updates for 58 flaws on February 11, 2026, including 6 actively exploited zero-day vulnerabilities (CVE-2026-21510, CVE-2026-21513, CVE-2026-21514, CVE-2026-21519, CVE-2026-21525, CVE-2026-21533) and 5 critical vulnerabilities. Three of the zero-days were publicly disclosed before patches were available.

Source: BleepingComputer

Google patched a high-severity use-after-free vulnerability in Chrome's CSS component on February 13, 2026, that was being actively exploited in the wild. CVE-2026-2441 allows remote code execution inside Chrome's sandbox via crafted HTML pages and affects versions prior to 145.0.7632.75/76.

Source: The Hacker News

n8n patched CVE-2026-25049 (CVSS 9.4), a critical vulnerability that bypasses previous CVE-2025-68613 fixes, allowing attackers to escape sandbox mechanisms and execute system commands. The flaw also affects 11 other vulnerabilities including 5 additional critical-rated issues in the workflow automation platform.

Source: The Hacker News

Microsoft patched 54 CVEs in February 2026 with 2 critical, 51 important, and 1 moderate rating. Elevation of privilege vulnerabilities accounted for 42.6% of patches, followed by remote code execution at 20.4%. Six zero-day vulnerabilities were exploited in the wild with three publicly disclosed.

Source: Tenable

CrowdStrike discovered and reported CVE-2026-21533 to Microsoft, confirming threat actors have been using this Remote Desktop Services privilege escalation vulnerability since at least December 24, 2025. The exploit modifies service configuration keys to add new users to Administrator groups targeting U.S. and Canada-based entities.

Source: CrowdStrike

Critical vulnerabilities were discovered in four popular VS Code extensions (Live Server, Code Runner, Markdown Preview Enhanced, and Microsoft Live Preview) with over 125 million combined downloads. The flaws could allow threat actors to steal local files and execute code remotely. According to OX Security, a hacker needs only one malicious extension or vulnerability to perform lateral movement and compromise entire organizations.

Source: The Hacker News

High to critical severity vulnerabilities affecting popular VS Code extensions collectively downloaded more than 128 million times could be exploited to steal local files and execute code remotely. OX Security discovered the flaws and tried to disclose them since June 2025, but no maintainer responded. Three CVEs (CVE-2025-65717, CVE-2025-65715, and CVE-2025-65716) were formally assigned and published on February 16.

Source: BleepingComputer

VS Code announced February events including Agent Sessions Day on Feb 19th. The integrated terminal added support for the Kitty graphics protocol, enabling applications to display inline images directly in the terminal. VS Code now respects metered network connections, postponing automatic updates when connected via mobile data, with a new proposed API for extensions to detect metered connections.

Source: Visual Studio Code

Critical and high-severity vulnerabilities were found in four widely used Visual Studio Code extensions with a combined 128 million downloads, exposing developers to file theft, remote code execution, and local network reconnaissance. Microsoft's Live Preview extension contained a cross-site scripting flaw, which Microsoft initially rated as low severity but quietly patched on September 11, 2025 without notifying the researchers.

Source: CSO Online

AWS introduces Amazon EC2 M8azn general purpose instances powered by fifth generation AMD EPYC processors with the highest maximum CPU frequency in the cloud at 5 GHz. These instances deliver up to 2x compute performance and 4.3x higher memory bandwidth compared to M5zn instances, targeting workloads like real-time financial analytics and high-frequency trading.

Source: AWS News Blog

Claude Opus 4.6 is now available in Amazon Bedrock as Anthropic's most intelligent model to date and a premier model for coding, enterprise agents, and professional work. The model brings advanced capabilities including industry-leading performance for agentic tasks, complex coding projects, and enterprise-grade workflows.

Source: AWS News Blog

Amazon ECS Managed Instances now supports Amazon EC2 Spot Instances, extending the range of capabilities available with AWS managed infrastructure. Users can access spare EC2 capacity at up to 90% discount compared to On-Demand prices for fault-tolerant workloads.

Source: AWS News Blog

Amazon SNS in Asia Pacific (New Zealand) and Asia Pacific (Taipei) regions can now send SMS messages to subscribers in more than 200 countries and territories via AWS End User Messaging. Amazon SNS now supports SMS sending in 32 AWS Regions.

Source: Daily AWS

Amazon Bedrock now supports DeepSeek V3.2, MiniMax M2.1, GLM 4.7, GLM 4.7 Flash, Kimi K2.5, and Qwen3 Coder Next. These models span frontier reasoning and agentic coding workloads.

Source: AWS News Blog

Released February 12, 2026, Vercel announced major AI coding agent integrations for Next.js. The update includes experimental in-browser agents, MCP (Model Context Protocol) integration, and improved logging designed to treat AI agents as first-class users with better visibility into Next.js operations.

Source: Next.js Blog (Vercel)

Updated February 20, 2026, the official Next.js 16 upgrade guide was released with React 19.2 features including View Transitions, useEffectEvent, and stable React Compiler support. The guide includes AI-powered MCP client configuration for automated upgrade processes.

Source: Next.js Documentation

Critical security alert for CVE-2026-23864 (CVSS 7.5) affecting React Server Components used by Next.js. This denial-of-service vulnerability allows attackers to cause memory exhaustion through specially crafted HTTP requests to Next.js applications using App Router.

Source: Netlify Changelog

Follow-up security bulletin addressing two additional vulnerabilities discovered after React2Shell disclosure: high-severity DoS (CVE-2025-55184) and medium-severity source code exposure (CVE-2025-55183). Vercel deployed WAF rules to automatically protect hosted projects at no cost.

Source: Vercel Knowledge Base