Welcome to episode 343 of The Cloud Pod, where the forecast is always cloudy! Justin, Ryan, and Matt are in the studio this week bringing you all the latest in Cloud and AI news, including some of the smaller clouds like Cloudflare and Crusoe Cloud, as well as announcements from the big guys like Google’s Gemini DeepThink, Anthropic’s big pay day, and Microsoft’s Notepad problem. We’ve got all this plus Matt screwing up his outro AGAIN, so let’s get started!

• Chrome’s WebMCP Protocol: Teaching AI Agents to Stop Doom-Scrolling the DOM and Actually Get Work Done
• Claude Enterprise Self-Service: Because Sometimes You Just Want to Buy AI Without Small Talk
• AWS EC2 Goes Inception Mode: Now You Can Virtualize Your Virtualization Without Going Broke
• Amazon EC2 Nested Virtualization: Because Your Virtual Machine Was Lonely and Needed Its Own Virtual Machine
• CloudWatch Alarm Mute Rules: Because Your Deployment Doesn’t Need a Standing Ovation at 3 AM
• Anthropic’s $380 Billion Valuation Proves AI Funding Has Gone Claude Nine
• AWS EC2 Nested Virtualization Finally Escapes the Expensive Hardware Jail
• Cloudflare Teaches AI Agents the Magic Words: Accept text/markdown and Save 13,000 Tokens
• Crusoe Cloud’s MCP Server: Teaching AI Assistants to Stop Asking for the Manager and Just Fix Your Infrastructure
• Azure’s New Agentic Copilot: Because Manually Clicking Through Dashboards Was So 2023
• Chrome’s WebMCP Gives AI Agents a GPS for Websites Because Apparently They’ve Been Lost in the HTML This Whole Time
• Anthropic Cuts Out the Middleman: Claude Enterprise Now Available Without the Enterprise Sales Dance
• AWS Gives CloudWatch the Silent Treatment: New Mute Rules Let Alarms Sleep Through Maintenance Windows
• AWS CloudWatch Hits Snooze: Mute Rules End On-Call Nightmares
• AWS Gives CloudWatch the Silent Treatment

00:45 Bloat Risk? Microsoft’s Notepad Upgrade Also Introduced a Vulnerability | PCMag

• Microsoft’s recent Notepad modernization introduced CVE-2026-20841, a vulnerability in the new Markdown support feature that allows malicious links in files to execute remote code.
• The flaw has been patched in the February 2026 security updates, but it highlights the security trade-offs when adding features to historically simple applications.
• The vulnerability exploits Notepad’s Markdown rendering capability, which Microsoft added in May to support lightweight markup language formatting. When Notepad opens a specially crafted Markdown file, embedded malicious links can trigger unverified protocols that load and execute remote files on the system.
• This incident raises questions about feature bloat in core Windows utilities, particularly as Microsoft continues adding network-dependent capabilities like AI-powered text writing to Notepad. Security researchers are debating whether basic text editors should have network functionality at all, given the expanded attack surface.
• The vulnerability demonstrates how modernization efforts can introduce security risks in previously low-risk applications.
• Organizations using Windows need to ensure t...