6 Sources
[1]
Microsoft's patch Tuesdays are about to get bigger
Windows 11 updates could soon include fixes for more security issues at once. Microsoft said in a blog post on Thursday that it's now using AI to "identify potential issues earlier," which means "customers will see a higher volume of security updates included in each security release." Hackers, even amateurs, have increasingly been using AI to quickly exploit security weaknesses over the past several months. Security researchers are also using AI to find issues faster, leading to more frequent high-severity vulnerabilities, like the "Copy Fail" exploit that impacted nearly every Linux distribution in May. Similarly, when Anthropic announced its Claude Mythos model earlier this year, it claimed that Mythos had already found high-severity vulnerabilities in "every major operating system." Microsoft says it's updating its Secure Development Lifecycle to make sure it "explicitly accounts for potential AI-enabled attack techniques and exploit paths." It's also making investments to "ensure that we are not compromising update quality as we gain speed," including integrating AI more throughout its security updates process. Additionally, Microsoft says it's "investing in new technology including Windows-specific tools and agentic harnesses" that will help generate and validate security fixes with AI, while "keeping humans in the loop when it comes to code review." Microsoft emphasized that while AI will now be more involved in identifying and resolving security issues, developers will still verify those findings and "make risk-based decisions" about updates.
[2]
Microsoft goes all in on new AI-powered Windows security strategy - what it means for you
Follow ZDNET: Add us as a preferred source on Google. ZDNET's key takeaways * Microsoft is accelerating its use of AI to detect vulnerabilities in Windows. * The new test routines have already deployed critical fixes to customers. * Enterprise admins should be prepared to see more fixes in each update. In the ongoing battle between the criminals who attack corporate networks and the engineers who defend them, one side has an unfair advantage. The bad guys can launch a thousand unsuccessful attacks without consequences, but if they succeed once, they can reap riches and create havoc. The good guys have to repel every attack. Adding AI to the mix makes the problem even worse, with attackers able to find new vulnerabilities and attack them at dramatically increased speed. The biggest target of all is Microsoft Windows, which runs on more than 1.5 billion PCs and servers worldwide. Also: 5 ways to fortify your network against the new speed of AI attacks To fight back, Microsoft is going all-in on an automated, AI-based process to find those vulnerabilities earlier, deliver them to engineers for review, and deliver updates faster. The details are in a new blog post from Pavan Davuluri, EVP of Microsoft's Windows + Devices division titled Evolving Windows vulnerability management to meet the speed of AI-powered discovery. The fastest way to reduce customer exposure is to find issues before attackers can use them. Windows is expanding its ability across the platform to find issues earlier, accelerate the engineering work to fix them, strengthen validation, and deliver timely, high-quality updates that keep customers protected. By applying AI across security analysis, we can identify patterns faster, prioritize risk, and scale vulnerability discovery across the Windows codebase. This helps reduce the time between discovery and customer protection. Davuluri said Microsoft Security has built dedicated cloud-based scanning and validation pipelines for MDASH, its "multi-model agentic scanning harness," to identify Windows vulnerabilities at scale, reduce false positives, and get high-confidence issues to engineers faster, shrinking the opportunity for malicious actors to launch zero-day attacks. Microsoft introduced MDASH in May, crediting the new tools with discovering 16 vulnerabilities, four of them rated Critical. All of them were patched in that month's security update. The new test framework (the "harness") was developed by the Microsoft Autonomous Code Security (ACS) team; the company said it "orchestrates more than 100 specialized AI agents across an ensemble of frontier and distilled models to discover, debate, and prove exploitable bugs end-to-end." Also: Microsoft's new Windows 11 recovery tool is the ultimate Undo button - how to enable it Those AI-powered tools are going to get involved much earlier in the development process, according to Microsoft: We continue to evolve our internal systems and practices so that vulnerability discovery is not treated as a separate activity, but as part of how we build, review and improve Windows before new features or updates are released. As a part of this we are updating our Secure Development Lifecycle (SDL) best practices to ensure our secure-by-design approach explicitly accounts for potential AI-enabled attack techniques and exploit paths. That means using AI to help identify potential issues earlier in the development process, while relying on human expertise to evaluate findings, make risk-based decisions and ensure fixes meet the quality bar customers expect. That promise to continue relying on human expertise is an important one. Whenever AI is involved at scale, there's a temptation to trust its results and skip over the necessary verification steps. And it's being introduced at a time when Microsoft is targeting some of its most experienced employees -- about 7% of the company's US-based workforce -- with a "voluntary retirement program." As longtime Microsoft watchers Todd Bishop and Kurt Schlosser noted last month, "For those staying behind, there's another worry: the loss of institutional knowledge and experience as so many longtime employees head for the door at once." Those security engineers who remain will have to cope with the increased workload without having some of their most experienced colleagues around to help. What does this new AI-powered pipeline mean for the humans responsible for maintaining Windows PCs? For starters, it means more issues fixed in each update. "Customers will see a higher volume of security updates included in each security release," Microsoft acknowledged. That will, unfortunately, increase the burden on enterprise customers to test updates before deploying them and monitor those updates afterward. If they see an issue during initial testing, Microsoft said, those admins can use a technology called Known Issue Rollback (KIR) to revert the change that caused the problem, rather than having to uninstall an entire update to get things running again. Also: You can soon restore Windows 11 from scratch even if it can't boot up - here's how That accelerated pace might incentivize some corporate customers to speed up their deployment of modern patching tools like Windows Autopatch in Microsoft Intune, which includes the ability to deliver hotpatch updates that don't require a reboot. Similar tools are available for applying security updates to Windows Servers, also without requiring a reboot. "As the pace of vulnerability discovery increases," Davuluri said, "customers shouldn't have to choose between speed and stability." That's a worthy goal, to be sure, but maintaining that balance means Microsoft's engineers and customers are going to have to move faster than ever to match the pace of those new AI tools.
[3]
Microsoft: Our AI-Powered Bug Hunting Means More Windows Security Patches
Expect more security patches to appear in future Windows updates as Microsoft harnesses AI to speed up the discovery of software bugs in the OS. "As AI helps defenders discover more issues, customers will see a higher volume of security updates included in each security release," Microsoft EVP Pavan Davuluri wrote in a blog post that's intended to shed light on how it's using powerful AI models to find and patch vulnerabilities, a growing trend across the tech industry. In Microsoft's case, the company has been using an AI system called MDASH, which can source from dozens of different specialized AI agents to find and validate software flaws. In May, Microsoft said MDASH helped it uncover 16 Windows vulnerabilities. Davuluri now says it has been running MDASH on the Windows codebase over "dedicated cloud infrastructure for scanning and proving." The automated pipeline is designed to eliminate false positives and refer the "highest-confidence findings" to the company's engineering team for review. Another goal is to use AI to discover problems earlier in the Windows development process, all the while relying on "human expertise to evaluate findings, make risk-based decisions and ensure fixes meet the quality bar customers expect," he says. "Our focus is to effectively utilize these AI tools to support faster protection, stronger engineering systems, and more actionable guidance for customers," Davuluri adds. Finding and patching software bugs more quickly is obviously good, especially amid signs that hackers are starting to embrace AI as well. The only problem is that Microsoft has a history of rolling out Windows updates with errors. As a result, consumers and businesses often hold off from updating, even though it could leave their PCs and IT systems vulnerable. In his blog post, Davuluri acknowledges the issue, saying, "as the pace of vulnerability discovery increases, customers shouldn't have to choose between speed and stability. Our job is to help customers stay protected while deploying updates with confidence. Windows will continue investing in the systems, engineering practices, and platform protections needed to reduce exposure responsibly at global scale." Microsoft's use of AI also represents a test of whether the technology can truly improve and streamline Windows' security, since AI-driven programming has faced criticism for making mistakes or creating shoddy code. Davuluri notes: "We're making the following investments to help ensure that we are not compromising update quality as we gain speed." The investments include validating the proposed Windows updates "across a range of testing environments, including the Security Update Validation Program (SUVP) and internal validation designed to help evaluate compatibility, reliability, and real-world usage scenarios." "We're also investing in new technology, including Windows-specific tools and agentic harnesses to enable end-to-end generation and validation of fixes using AI, keeping humans in the loop when it comes to code review," he added. Still, customers can report a problematic Windows update. Enterprise customers can also use the Known Issue Rollback function to rein in a bad, non-security component of a Windows update without fully uninstalling it, ensuring the patches remain in place. For consumers, Microsoft will use the rollback feature on Windows devices if a bad update is detected. "The most important guidance is to stay current and take security updates as soon as possible," Davuluri says. "Timely patching is one of the most effective ways to reduce exposure, especially as AI accelerates the speed at which vulnerabilities can be discovered and exploited."
[4]
Microsoft's big cybersecurity plan means more security updates for your Windows machine
* Microsoft uses AI to speed up discovery and patching of Windows security issues. * AI-assisted detection means more and larger security updates per Windows release. * AI partners with engineers to deliver faster, stronger protections and guidance to customers. When we think about AI usage, we usually think of something along the lines of ChatGPT, where people can get news, generate images, and even code with a simple prompt. However, in the world of cybersecurity, there's an arms race between the people using AI to quickly generate malicious apps and viruses and those using it to defend others. With Microsoft firmly in the latter category, the company has posted a blog post detailing how it'll utilize AI to keep Windows users safe. And one particularly interesting nugget reveals that we may see bigger, tougher security updates as Microsoft's AI spots more problems than ever before. Microsoft lays out its big AI plan to protect its Windows users The company is spotting issues quicker than it used to Over on the Windows blogs, Microsoft digs deep into how it's using AI for cybersecurity. It says that its AI models will aid in the production of security patches, from discovery to development and all the way to deployment. It doesn't seem like Microsoft is just going to sic an AI on Windows and let it run rampant; instead, the AI will work alongside engineers to help them solve problems faster. Within the article is this interesting tidbit: As AI helps defenders discover more issues, customers will see a higher volume of security updates included in each security release. This is evidence that defenders are getting better at identifying and addressing issues. Our focus is to effectively utilize these AI tools to support faster protection, stronger engineering systems and more actionable guidance for customers. Microsoft explains how it'll achieve this in its blog post, but as for what you, as a Windows user, can expect, you can look forward to a more robust and secure system as the company speeds up flaw recognition and patching.
[5]
Microsoft expects more Windows security updates from AI-discovered flaws
Microsoft says Windows users should expect to see an increase in security updates as the company increasingly relies on artificial intelligence to discover vulnerabilities in its codebase. In a blog post published today, Microsoft said advances in AI have significantly accelerated vulnerability discovery, allowing engineers to identify more security issues before they can be exploited in zero-day attacks. "The pace of vulnerability discovery is changing with advances in AI making it possible to find more issues, faster, across more code, with new mechanisms that can accelerate both discovery and analysis," Microsoft said. As part of this approach, the company is using Microsoft Security's multi-model agentic scanning harness (MDASH), an AI-powered vulnerability discovery system previously detailed by Microsoft, which scans critical binaries and validates potential vulnerabilities using multiple AI models. Microsoft says the system scans critical Windows binaries for vulnerabilities and then validates the findings using multiple AI models. Vulnerability candidates are then passed through a second Windows-specific validation pipeline designed to eliminate false positives before engineers investigate the issues. The company says it is also using AI to help engineers understand failures more quickly, suggest possible bug fixes, and identify similar bugs elsewhere in the Windows source code. However, Microsoft says human engineers will still oversee and review all proposed code and validate fixes before they are released into production. Microsoft says the increased use of AI for vulnerability discovery means customers are likely to see more security updates to address newly discovered vulnerabilities in each monthly Patch Tuesday release. "As AI helps defenders discover more issues, customers will see a higher volume of security updates included in each security release," says Microsoft. Artificial intelligence is used not only to find and fix vulnerabilities but also by threat actors to power their attacks and exploit zero-day flaws before they are fixed. Due to this, Microsoft also announced today that it is updating its Secure Development Lifecycle (SDL) practices to account for AI-enabled attack techniques and to use AI earlier in the software development process to identify security issues before features are released. This announcement comes two days after Reuters reported that the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has begun using Anthropic's Fable AI model to scan government software for vulnerabilities that cybercriminals or foreign intelligence services could exploit. According to the report, the AI-assisted code audits have already uncovered numerous vulnerabilities, though officials did not disclose how many or provide details on their severity.
[6]
Your Windows security updates are about to get a lot bigger (and that's good news)
Sara Heritage is a tech and gaming journalist, who's currently making her way up to Master Ball rank in Pokemon Champions. Bylines in IGN, GAMINGbible, The Gamer and more. You can usually find her tinkering with tech, or restoring old consoles, always with one of her 3 cats nearby. Come and talk with her over on Twitter @SHeritageJourno. * Windows updates will be more frequent and AI-driven to find and fix vulnerabilities faster. * Updates install automatically in the background; Known Issue Rollback helps revert bad patches safely. * AI prioritizes and scans at scale, shrinking hackers' window -- keeps your device updated promptly. Your Windows security updates are about to get bigger, and a lot more common, but it's definitely not a bad thing. Windows is expanding its ability across the platform to detect issues earlier, powered by AI. For everyday Windows users, Microsoft's latest security, this latest update means your device is now better protected against cyber threats, often without you having to lift a finger. Thanks to its AI technology, Windows can identify and fix security problems faster than ever before, shrinking the window of opportunity for hackers. What's changing behind the scenes? AI has changed the game Traditionally, finding security vulnerabilities -- those hidden weaknesses hackers exploit -- was a slow process. Especially with the widespread use of AI, it's easier than ever for hackers to access your personal data. Microsoft believes that the fastest way to reduce your exposure is to find issues before attackers can use them. To do this, Windows is expanding its ability across the platform to find issues earlier, accelerate the engineering work to fix them, strengthen validation, and deliver timely, high-quality updates that keep you protected. Microsoft uses AI systems like MDASH, its advanced AI tool that scans Windows for security issues. It means it can scan your Windows operating system for issues at a pace and scale that humans could never achieve. These AI-powered scans quickly spot patterns and potential problems, allowing Microsoft to patch vulnerabilities before criminals can exploit them. In practice, when a new bug or weakness appears, Microsoft's AI helps prioritize which ones are most dangerous and should be fixed first. This means Windows updates are now more frequent, but these updates are a positive sign: they show that Microsoft's defenses are catching threats faster. What does this mean for you? Good news, updates will be automatic. The result for most people is a safer Windows experience with a lower risk of being hit by malware, ransomware, or other cyberattacks. Updates may come more often, but they're designed to install smoothly in the background. Microsoft also uses technology like Known Issue Rollback (KIR) so if a security update causes a problem, your computer can quickly revert to its previous, stable state -- all without losing protection. Microsoft is also investing in new technology, including Windows-specific tools and agentic harnesses to enable end-to-end generation and validation of fixes using AI, keeping humans in the loop when it comes to code review. The bottom line is that AI is transforming how Windows secures your PC, making it much harder for hackers to sneak in. For most users, this means stronger protection and less hassle. The most important guidance is to stay current and take security updates as soon as possible. Timely patching is one of the most effective ways to reduce exposure, especially as AI accelerates the speed at which vulnerabilities can be discovered and exploited.
Share
Copy Link
Microsoft is deploying AI-powered systems to identify Windows security vulnerabilities faster than ever before, leading to more frequent and comprehensive security updates. The company's MDASH system orchestrates over 100 specialized AI agents to discover, validate, and patch security flaws across the Windows codebase, which runs on more than 1.5 billion devices worldwide. While AI accelerates discovery, human engineers maintain oversight of all code reviews and deployment decisions.
Microsoft announced a major shift in how it identifies and addresses security vulnerabilities in Windows, with the company now deploying AI security systems to discover flaws at unprecedented speed
1
. In a blog post published by Pavan Davuluri, EVP of Microsoft's Windows + Devices division, the company revealed that customers will see "a higher volume of security updates included in each security release" as AI helps defenders discover more issues2
. This AI-driven cybersecurity strategy represents Microsoft's response to an escalating arms race where both attackers and defenders increasingly leverage artificial intelligence to find and exploit software vulnerabilities.
Source: BleepingComputer
At the heart of Microsoft's new approach is MDASH, the company's multi-model agentic scanning harness developed by the Microsoft Autonomous Code Security team
2
. This AI-powered system orchestrates more than 100 specialized AI agents across an ensemble of frontier and distilled models to discover, debate, and prove exploitable bugs end-to-end2
. Microsoft has built dedicated cloud-based scanning and validation pipelines for MDASH to identify Windows vulnerabilities at scale, reduce false positives, and get high-confidence issues to engineers faster2
. The system scans critical Windows binaries for vulnerabilities and validates findings using multiple AI models before passing vulnerability candidates through a second Windows-specific validation pipeline designed to eliminate false positives5
.The effectiveness of AI-powered bug hunting became evident in May when Microsoft introduced MDASH, crediting the new tools with discovering 16 vulnerabilities, four of them rated Critical
2
. All of these AI-discovered vulnerabilities were patched in that month's security update2
. Microsoft now runs MDASH continuously on the Windows codebase over dedicated cloud infrastructure for scanning and proving, with the automated pipeline designed to refer the "highest-confidence findings" to the company's engineering team for review3
. This acceleration in vulnerability discovery directly addresses the asymmetric advantage attackers have enjoyed, where they can launch countless unsuccessful attacks without consequences but need only succeed once to create havoc2
.Microsoft is updating its Secure Development Lifecycle to ensure it "explicitly accounts for potential AI-enabled attack techniques and exploit paths"
1
. The company emphasized that vulnerability discovery will no longer be treated as a separate activity but integrated into how Windows is built, reviewed, and improved before new features or updates are released2
. This shift recognizes that hackers, even amateurs, have increasingly been using AI to quickly exploit security weaknesses over the past several months1
. Security researchers are also using AI to find issues faster, leading to more frequent high-severity vulnerabilities, like the "Copy Fail" exploit that impacted nearly every Linux distribution in May1
.
Source: ZDNet
While AI will be more involved in identifying and resolving security issues, Microsoft emphasized that developers will still verify findings and "make risk-based decisions" about updates
1
. The company is "investing in new technology including Windows-specific tools and agentic harnesses" that will help generate and validate security fixes with AI, while "keeping humans in the loop when it comes to code review"1
. This promise to continue relying on human expertise is particularly important given that AI-driven programming has faced criticism for making mistakes or creating shoddy code3
. Microsoft says it will use AI to help engineers understand failures more quickly, suggest possible bug fixes, and identify similar bugs elsewhere in the Windows source code5
.Related Stories
The increased volume of more Windows security patches will create additional burden for enterprise customers who must test updates before deploying them and monitor those updates afterward
2
. Microsoft acknowledged this concern, stating that "as the pace of vulnerability discovery increases, customers shouldn't have to choose between speed and stability"3
. To address potential issues, enterprise customers can use Known Issue Rollback (KIR) to revert changes that caused problems rather than having to uninstall entire updates2
. For consumers, Microsoft will use the rollback feature on Windows devices if a bad update is detected3
. Despite these safeguards, the company's most important guidance remains clear: "stay current and take security updates as soon as possible" as timely patching is one of the most effective ways to reduce exposure, especially as AI accelerates the speed at which cyber threats can be discovered and exploited3
.
Source: MakeUseOf
Microsoft's announcement comes just two days after Reuters reported that CISA has begun using Anthropic's Fable AI model to scan government software for vulnerabilities that cybercriminals or foreign intelligence services could exploit
5
. According to the report, the AI-assisted code audits have already uncovered numerous vulnerabilities, though officials did not disclose how many or provide details on their severity5
. When Anthropic announced its Claude Mythos model earlier this year, it claimed that Mythos had already found high-severity vulnerabilities in "every major operating system"1
. This growing trend across the tech industry and government agencies signals a fundamental shift in cybersecurity practices, where AI becomes essential for defending the more than 1.5 billion PCs and servers running Windows worldwide2
. Microsoft's investments in validating proposed Windows updates across a range of testing environments, including the Security Update Validation Program (SUVP) and internal validation designed to evaluate compatibility, reliability, and real-world usage scenarios, demonstrate the company's commitment to balancing speed with quality3
.Summarized by
Navi
[1]
[4]
[5]
10 Jun 2026•Technology

12 May 2026•Technology

13 May 2026•Technology

1
Technology

2
Policy and Regulation

3
Policy and Regulation
