Google Cloud Vertex AI Agent Engine Billing Begins Feb 11
Google has updated the timeline for Vertex AI Agent Engine’s move to metered service. Billing for Sessions, Memory Bank, and Code Execution is now scheduled to begin February 11, 2026. This change requires FinOps teams to audit existing AI pilot projects and set spending limits before the new charges take effect next month.
Sources: https://docs.cloud.google.com/vertex-ai/docs/release-notes
CISA Sets Jan 30 Deadline for Critical Fortinet Vulnerability
CISA added CVE-2026-24858 to its Known Exploited Vulnerabilities catalog following evidence of active exploitation. The flaw allows for authentication bypass on multiple Fortinet products. Federal agencies are required to remediate this vulnerability by January 30, 2026.
OMB Rescinds Universal Software Attestations in Favor of Risk-Based Approach
White House Memorandum M-26-05, issued January 23, rescinds the mandatory universal software attestation forms established in 2022. The new guidance directs agencies to develop assurance policies that match their specific risk determinations, which may include requiring Software Bills of Materials (SBOMs) upon request.
93% of Organizations Plan Privacy Spend Increase to Support AI
A 2026 benchmark study from Cisco reveals that nearly all surveyed organizations plan to increase their data privacy and governance spending. The study found that 90% of organizations have already expanded their privacy programs to manage the growing complexity and risks introduced by AI adoption.
Watchdog Warns 16% IT Staffing Cut Jeopardizes IRS Modernization
A memorandum from the Treasury Inspector General for Audit reports that 16% of the IRS’s IT workforce has been reduced, putting modernization projects for the 2026 filing season at risk. The report notes that these staffing cuts have brought personnel levels back to 2021 numbers, impacting the agency’s ability to implement legislative changes.
Sources: https://fedscoop.com/irs-tech-delays-tax-filing-season-treasury-report/
Topics We’re Tracking (But Didn’t Make the Cut) Dropped Topic: Update on NIST SP 800-213 (IoT Device Cybersecurity). Why It Didn’t Make the Cut: The White House memo and CISA alert took priority for today’s governance and security slots. Why It Caught Our Eye: It’s a core component of the broader federal IoT security push.
Quick Disclaimer and Sources Note: The author used AI in part to create this newscast. Our goal is to be transparent and show you how we sourced the info we used. This newscast was developed using only public sources of information. The Exchange Daily is a production of Metora Solutions. For more information about how to participate in this daily newscast, contact us at podcasts@metorasolutions.com. All original content, formatting, and presentation are copyright 2026 Metora Solutions LLC, all rights reserved. For more information about our work and other projects, drop us a note at info@metorasolutions.com
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit theexchangedaily.substack.com
