Microsoft Patches a Record 570 Security Flaws in July as AI Accelerates the Pace of Vulnerability Discovery
Microsoft Patches a Record 570 Security Flaws in July as AI Accelerates the Pace of Vulnerability Discovery
Microsoft released software updates Tuesday to fix at least 570 security vulnerabilities across Windows and its other products, nearly tripling the number of flaws the company patched in last month's already record-setting release, as the company points to artificial intelligence as a major driver behind the surging patch counts.
Nearly 60 of the vulnerabilities addressed in this month's release earned a "critical" severity rating, meaning attackers could potentially exploit them to seize remote control of a Windows device with little or no action required from the user. Microsoft also patched three zero-day vulnerabilities as part of the release, including two flaws that were already being actively exploited before the fix became available.
Two of the zero-day vulnerabilities allow attackers to elevate their level of access on a compromised Windows system, joining roughly 250 other elevation-of-privilege flaws fixed this month. Among them are CVE-2026-56155, a bug affecting Active Directory Federation Services, and CVE-2026-56164, a vulnerability in Microsoft SharePoint. Separately, Microsoft addressed CVE-2026-50661, a security feature bypass affecting Windows BitLocker that could allow an attacker with physical access to a device to gain entry to encrypted data. Microsoft said that flaw had been publicly detailed but that the company was not aware of any active exploitation of it at the time of the patch's release.
Microsoft has attributed the dramatic rise in........
