ON
← Back to feed
Microsoft patches record number of security vulnerabilities, citing its use of AI
United States💻 Technology6 hr. ago

Microsoft patches record number of security vulnerabilities, citing its use of AI

Microsoft released a record-breaking 570 security patches across its products, including Windows and Office, in its latest 'Patch Tuesday' update. This unusually high number of fixes was attributed to the increased use of artificial intelligence (AI) by Microsoft engineers to identify hidden vulnerabilities in its software. At least two of these flaws were classified as zero-day exploits, meaning they had already been actively used by hackers against systems. One vulnerability allowed attackers to gain administrative access on Windows Server, while another affected Microsoft's SharePoint platform, which the U.S. Cybersecurity and Infrastructure Security Agency (CISA) confirmed was being actively exploited. Microsoft stated that AI tools are enabling faster detection of previously unknown issues, leading to larger volumes of security updates in future releases.

Microsoft released a record number of security patches this week, addressing 570 vulnerabilities across its Windows, Office, and other products. The update, delivered on Tuesday as part of its regular “Patch Tuesday” schedule, marks one of the largest batches of security fixes in recent history. The company attributed the surge in vulnerabilities to its growing reliance on artificial intelligence tools to identify potential weaknesses in its software. According to internal reports, at least two of the newly discovered flaws are classified as zero-day exploits, vulnerabilities that attackers can exploit before developers become aware of them. One of these bugs affects Windows Server, enabling unauthorized users to elevate their privileges from a standard account to administrative control. Another flaw impacts SharePoint, a widely used file-sharing platform. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued warnings that cybercriminals are already leveraging this vulnerability to breach organizational networks. This latest round of patches follows a broader shift in Microsoft's approach to cybersecurity. Last week, the company announced in a blog post that it anticipated a significant increase in the number of security updates due to the integration of AI into its threat detection and analysis processes. The move reflects a larger trend among major tech firms to harness machine learning and automation to improve the speed and accuracy of identifying and mitigating security risks. Pavan Davuluri, head of Windows, emphasized that the rise in detected vulnerabilities is a direct result of enhanced defensive capabilities. “As AI helps defenders discover more issues, customers will see a higher volume of security updates included in each security release,” he stated. This sentiment aligns with growing concerns within the cybersecurity community that AI-driven tools are uncovering long-standing flaws in legacy systems, some of which date back several decades. Security researchers have noted that AI models trained specifically for cybersecurity applications are capable of scanning vast amounts of code for patterns that might indicate hidden vulnerabilities. These models can detect anomalies that human analysts might overlook, particularly in complex or aging codebases. Microsoft’s Windows operating system, for instance, contains millions of lines of code developed over multiple generations, making it a prime target for such analyses. The increased frequency of critical vulnerabilities underscores the evolving nature of digital threats. As AI becomes more sophisticated, both defenders and attackers are adapting their strategies. While Microsoft’s use of AI aims to bolster security, it also highlights the challenges of maintaining robust defenses in an increasingly interconnected and automated world. Organizations must remain vigilant, ensuring that their systems are regularly updated and monitored against emerging threats. Looking ahead, Microsoft plans to continue expanding its AI-powered security initiatives. The company has already begun testing new tools designed to automate parts of the vulnerability assessment process, reducing the time required to identify and address security gaps. Industry experts suggest that while these advancements offer clear benefits, they also require careful implementation to avoid introducing new risks through misconfigurations or unintended side effects.

How each side covered it

The same event, grouped by the political lean of the outlets covering it.

How each side covered it

Support independent, bias-aware news and unlock the social pulse, community voting, and your personalized For You feed.

Become a Supporter

Covered around the world

The same event as reported in other countries.

Covered around the world

Support independent, bias-aware news and unlock the social pulse, community voting, and your personalized For You feed.

Become a Supporter

Claims check

Key factual claims, and how many sources assert vs dispute each.

Claims check

Support independent, bias-aware news and unlock the social pulse, community voting, and your personalized For You feed.

Become a Supporter

Go to the primary sources (2)

The official sources this coverage is built on. Read them directly to bypass framing.

1 reports

TechCrunch logoTechCrunchIndependentCenter6 hr. ago
Microsoft patches record number of security vulnerabilities, citing its use of AI

Microsoft released a record-breaking 570 security patches across its products, including Windows and Office, in its latest 'Patch Tuesday' update. This unusually high number of fixes was attributed to the increased use of artificial intelligence (AI) by Microsoft engineers to identify hidden vulnerabilities in its software. At least two of these flaws were classified as zero-day exploits, meaning they had already been actively used by hackers against systems. One vulnerability allowed attackers to gain administrative access on Windows Server, while another affected Microsoft's SharePoint platform, which the U.S. Cybersecurity and Infrastructure Security Agency (CISA) confirmed was being actively exploited. Microsoft stated that AI tools are enabling faster detection of previously unknown issues, leading to larger volumes of security updates in future releases.

Bias read (Center): The article focuses on technological advancements in cybersecurity and does not present any politically charged content or take a stance on controversial issues. It objectively reports on Microsoft's use of AI for identifying vulnerabilities and provides factual information about the nature of the 5

Keep the news honest.

ObjectiveNews is reader-funded and ad-free — we show you the bias instead of hiding it. Support independent journalism for €5/month.

Become a Supporter

Related stories