Microsoft fixed 570 security vulnerabilities at once across major product lines including Windows and Office. TechCrunch reported on July 15 that Microsoft delivered its largest-ever security patch this week after using AI to increase the detection of code vulnerabilities.
The update was released in line with "Patch Tuesday," a bundle of security fixes distributed regularly each month. Microsoft said in a blog post last week that this month’s security patch would be much larger than usual. The company explained that internal staff are using AI to find more software security flaws that had not previously been discovered.
At least 2 of the fixed vulnerabilities were classified as zero-days. They were exploited in attacks before Microsoft became aware of them. One Windows Server-related vulnerability allows a user with limited privileges to elevate privileges to system administrator.
Another zero-day vulnerability was found in SharePoint, a file-sharing server. The U.S. Cybersecurity and Infrastructure Security Agency warned that hackers are actively exploiting the vulnerability to compromise multiple organisations.
Pavan Davuluri (파반 다불루리), head of Windows, said that as AI increases the discovery of issues on the security defence side, customers will also see more fixes listed in each security update.