exhibit-ai

Exhibit A(I): CISA warns of active exploitation of Microsoft SharePoint vulnerability (CVE-2026-20963)

The Cybersecurity and Infrastructure Security Agency (CISA) has warned organizations about the active exploitation of a critical vulnerability in

The Cybersecurity and Infrastructure Security Agency (CISA) has warned organizations about the active exploitation of a critical vulnerability in Microsoft SharePoint, designated CVE-2026-20963. This remote code execution (RCE) flaw was patched in January 2026, but attackers are exploiting it swiftly.

What to do this week

Ensure that your SharePoint installations are updated to the latest version.
Verify that your cybersecurity protocols are robust enough to handle potential attacks related to this vulnerability.
Increase awareness among your teams about phishing attempts that may arise following this warning.

Sources

AI Agent Liability: When Your AI Acts Autonomously, Who Pays?

Your AI agent just booked a flight, sent an email, or deleted a database. It did what you told it to do, except it didn't. Who's liable when AI goes from assistant to autonomous actor?

Explain This: The EDPB's DPIA Template Is an Attempt to Standardize Proof

The EDPB's DPIA template matters because it tries to turn fragmented privacy risk assessments into a more uniform evidence standard.

The Docket: The UK's Cyber Resilience Bill Is Not Just NIS2 in a Different Accent

The UK's Cyber Security and Resilience Bill matters because it appears to widen the cyber risk perimeter beyond obvious critical infrastructure operators.

What to do this week

Sources

Read next