Microsoft patches record number of security vulnerabilities, citing its use of AI

Microsoft patches record number of security vulnerabilities, citing its use of AI
Microsoft's monthly release of security fixes, dubbed Patch Tuesday, resolved a record 570 security vulnerabilities across the company's product line, thanks to discoveries with AI.

<p id="speakable-summary" class="wp-block-paragraph">Microsoft released a record number of security patches for Windows, Office, and other tech product lines this week, citing the use of AI to aid the discovery of code vulnerabilities.</p>
<p class="wp-block-paragraph">The technology and cloud giant issued patches for 570 security flaws on Tuesday as part of its monthly scheduled release of fixes, which security researchers have long dubbed “Patch Tuesday.”</p>
<p class="wp-block-paragraph">At least two of the vulnerabilities are classified as <a href="https://techcrunch.com/2025/04/25/techcrunch-reference-guide-to-security-terminology/#zero-day">zero-days</a>, meaning that they were exploited before Microsoft was made aware of them. One <a href="https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2026-56155" target="_blank" rel="noreferrer noopener nofollow">bug</a> affecting Windows Server allows hackers to escalate their privileges from a limited user to a system administrator. Another bug affects the SharePoint file sharing server — the U.S. government’s cybersecurity agency CISA has warned hackers were <a href="https://www.cisa.gov/news-events/alerts/2026/07/14/cisa-adds-four-known-exploited-vulnerabilities-catalog" target="_blank" rel="noreferrer noopener nofollow">actively exploiting</a> the bug to compromise organizations.</p>
<p class="wp-block-paragraph">Krebs on Security first <a href="https://krebsonsecurity.com/2026/07/microsoft-patches-a-record-570-security-flaws/" target="_blank" rel="noreferrer noopener nofollow">reported</a> the news.</p>
<p class="wp-block-paragraph">The huge patch update comes a week after <a href="https://blogs.windows.com/windowsexperience/2026/07/09/evolving-windows-vulnerability-management-to-meet-the-speed-of-ai-powered-discovery/" target="_blank" rel="noreferrer noopener nofollow">Microsoft said in a blog post</a> that it expected its usual batch of monthly security patches to be far higher in number than before. The company cited its use of AI to help its employees uncover previously undiscovered security bugs in its software.</p>
<p class="wp-block-paragraph">“As AI helps defenders discover more issues, customers will see a higher volume of security updates included in each security release,” said Windows boss Pavan Davuluri.</p>
<p class="wp-block-paragraph">As AI models become more advanced and focused on cybersecurity issues, security researchers are using them to uncover vulnerabilities that may have been dormant in software code for years, if not longer. Parts of Microsoft’s Windows code dates back decades.</p>