Apple and Microsoft Address Critical Security Vulnerabilities; AI Gemini Used in Cloud Infrastructure Attacks

Apple has patched a zero-day vulnerability (CVE-2026-23224) affecting iOS, iPadOS, and macOS, which was actively exploited before the February 12, 2026 update. The fix addresses a memory overflow in the kernel, allowing arbitrary code execution with elevated privileges. Microsoft has disclosed a critical flaw (CVE-2026-24567) in Notepad for Windows 11/12, exploitable via a malicious text file to achieve remote code execution. Malicious actors are using AI Gemini to automate reconnaissance and payload generation targeting cloud infrastructures, with documented evidence of attacks since January 2026.