News•Feb 23, 2026
Attackers Exploit Ivanti EPMM Zero-Days to Seize Control of MDM Servers
Attackers are actively exploiting two critical Ivanti Endpoint Manager Mobile (EPMM) zero‑days (CVE‑2026‑1281 and CVE‑2026‑1340) that allow unauthenticated remote code execution. More than 4,400 EPMM instances are exposed on the public internet, giving threat actors full control of enterprise mobile device management infrastructure. Exploits quickly progress from scanning to installing persistent backdoors, cryptominers, or web shells, even after organizations apply emergency patches. Ivanti has issued emergency patches but warns they must be reapplied after any version upgrade, and a permanent fix is slated for Q1 2026.
By CSO Online – Security
News•Feb 12, 2026
Companies Are Using ‘Summarize with AI’ to Manipulate Enterprise Chatbots
Microsoft's research reveals a new AI hijacking technique called AI recommendation poisoning, where "Summarize with AI" buttons embed hidden prompts that bias enterprise chatbots toward a vendor’s products. Over two months, researchers found 50 instances across 31 companies in sectors...
By CSO Online – Security
Deals•Feb 12, 2026
Palo Alto Networks Completes $25B Acquisition of CyberArk
Palo Alto Networks announced the completion of its $25 billion acquisition of Israel‑based identity security firm CyberArk, integrating privileged access and identity security into its platform. The deal aims to unify human, machine and AI identity controls, strengthening Palo Alto’s zero‑trust...
CSO Online – Security