Welcome to the February 2026 edition of the Cyber Threats Report. This month, we examine three distinct security concerns that underscore the evolving threat landscape facing organisations today.
Our first article examines the ongoing exploitation of CVE-2025-8088, a WinRAR vulnerability still being targeted despite a patch being available for six months - a stark reminder of the risks posed by delayed patching.
Next, we cover a newly patched Windows 11 Notepad vulnerability, where Markdown support inadvertently expanded the attack surface of this trusted utility.
Finally, as personal assistants powered by agentic AI gain traction across organisations, these platforms are increasingly being deployed without proper security review - effectively creating backdoors into corporate environments.
Together, these articles highlight a common theme: the importance of proactive security hygiene, whether through timely patching, careful evaluation of new features, or rigorous governance of emerging technologies.