Microsoft Patches Record 570 Security Flaws, Including Two Zero-Days, in AI-Powered Bug Hunt
By admin | Jul 15, 2026 | 2 min read
Microsoft rolled out an unprecedented number of security patches for Windows, Office, and other product lines this week, attributing the surge to the use of artificial intelligence in identifying code vulnerabilities. The tech giant released fixes for 570 security flaws on Tuesday as part of its regular monthly update cycle, commonly referred to by security researchers as “Patch Tuesday.”
At least two of these vulnerabilities are classified as zero-days, meaning they were actively exploited before Microsoft became aware of them. One bug in Windows Server enables attackers to elevate their privileges from a restricted user to a system administrator. Another bug impacts the SharePoint file-sharing server, and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that hackers are actively exploiting it to compromise organizations. Krebs on Security first reported this information.
EMBED_PLACEHOLDER_0
The massive patch update comes just a week after Microsoft stated in a blog post that it expected its usual monthly security patches to be significantly larger in number than before. The company attributed this increase to its use of AI, which helps employees uncover previously undetected security flaws in its software. “As AI helps defenders discover more issues, customers will see a higher volume of security updates included in each security release,” said Pavan Davuluri, Microsoft’s Windows chief.
As AI models become more sophisticated and focused on cybersecurity, security researchers are increasingly leveraging them to uncover vulnerabilities that may have lain dormant in software code for years, if not decades. Some parts of Microsoft’s Windows code date back decades, making such discoveries particularly valuable.
Comments
Please log in to leave a comment.
No comments yet. Be the first to comment!