Microsoft releases record 570 security patches, cites AI role in vulnerability discovery
Microsoft releases record 570 security patches, citing AI's role in discovering code vulnerabilities.

record 570 security patches, cites AI role in vulnerability discovery">
Microsoft released a record 570 security patches for Windows, Office, and other tech product lines this week, citing the use of AI to aid the discovery of code vulnerabilities. The technology and cloud giant issued the patches on Tuesday as part of its monthly scheduled release of fixes, known as 'Patch Tuesday.' At least two of the vulnerabilities are classified as zero-days, meaning they were exploited before Microsoft was made aware of them. One bug affecting Windows Server allows hackers to escalate their privileges from a limited user to a system administrator.
Another bug affects the SharePoint file sharing server; the U.S. government's cybersecurity agency CISA warned that hackers were actively exploiting the bug to compromise organizations. Krebs on Security first reported the news.
The huge patch update comes a week after Microsoft said in a blog post that it expected a higher number of monthly security patches than before, citing its use of AI to help employees uncover previously undiscovered security bugs in its software. 'As AI helps defenders discover more issues, customers will see a higher volume of security updates included in each security release,' said Windows boss Pavan Davuluri. As AI models become more advanced and focused on cybersecurity issues, security researchers are using them to uncover vulnerabilities that may have been dormant in software code for years.
Parts of Microsoft's Windows code date back decades. Why this matters: This massive patch release highlights the growing importance of AI in cybersecurity. By leveraging AI to discover vulnerabilities, Microsoft and other companies can proactively address potential threats before they become major issues.
However, this also raises questions about the long-term sustainability of this approach, as the number of vulnerabilities in software code continues to grow. For developers and businesses, this means prioritizing patch management and investing in AI-powered security tools. For consumers, it underscores the need for vigilance in keeping software up to date.
As AI models continue to improve, we can expect to see more companies adopting this approach, potentially leading to a significant reduction in cyber threats – but also raising new challenges in terms of patch management and software maintenance.
Source: TechCrunch