Key developments
- Actively exploited zero-days: February 2026 Patch Tuesday includes six zero-days confirmed as exploited in the wild; prioritize expedited testing and deployment across affected environments [1].
- Enterprise endpoint management: Ivanti released patches for Endpoint Manager vulnerabilities that were disclosed in October 2025; update EPM components and verify remediation completion [2].
- Ransomware/incidents: No corroborated ransomware events or public-infrastructure outages are reported in the provided sources; continue monitoring for follow-on exploitation tied to the above vulnerabilities [1][2].
Operational recommendations
- Patch Tuesday: Accelerate deployment, enable heightened monitoring for exploitation attempts, and validate coverage on Internet-exposed and high-value systems [1].
- Ivanti EPM: Apply the vendor’s latest updates, confirm version compliance across servers/agents, and review any interim mitigations used since Oct 2025 [2].
Intelligence gaps
- Specific CVE IDs, severity ratings, and product scopes for the six zero-days and the Ivanti issues are not detailed in the provided materials; consult the underlying advisories linked by the reported articles for precise impact and version guidance [1][2].