Close Menu
  • Home
  • News
  • Cyber Security
  • Internet of Things
  • Tips and Advice

Subscribe to Updates

Get the latest creative news from FooBar about art, design and business.

What's Hot

CISA Details Incident Response to Exposed AWS GovCloud Keys

July 10, 2026

6 Capabilities That Separate Leaders from Bolt-On AI solutions

July 10, 2026

Anthropic and OpenAI Security Tools Could Fuel Cyber-Attacks

July 10, 2026
Facebook X (Twitter) Instagram
Friday, July 10
Facebook X (Twitter) Instagram Pinterest Vimeo
Cyberwire Daily
  • Home
  • News
  • Cyber Security
  • Internet of Things
  • Tips and Advice
Cyberwire Daily
Home»News»Microsoft Warns of Increase in Number of Security Updates
News

Microsoft Warns of Increase in Number of Security Updates

Team-CWDBy Team-CWDJuly 10, 2026No Comments3 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
Share
Facebook Twitter LinkedIn Pinterest Email


Microsoft has warned customers to expect a surge in the number of security updates they will need to apply to Windows, as it uses cutting-edge AI techniques to find more zero-day vulnerabilities.

The tech giant claimed in a blog post on July 9 that it is applying AI to security analysis to “identify patterns faster, prioritize risk and scale vulnerability discovery across the Windows codebase.”

“As AI helps defenders discover more issues, customers will see a higher volume of security updates included in each security release,” it added. “This is evidence that defenders are getting better at identifying and addressing issues. Our focus is to effectively utilize these AI tools to support faster protection, stronger engineering systems and more actionable guidance for customers.”

Read more on AI-powered security research: UK Government Finds 400+ Vulnerabilities in AI Hackathons

A key component of this new approach multi-model agentic scanning harness (MDASH), which uses several models to find novel vulnerabilities.

“To run MDASH at Windows scale, Windows set up dedicated cloud infrastructure for scanning and proving. A scanner pipeline scans critical binaries and validates candidates using multi-model debate across multiple model families,” Microsoft explained.

“Confirmed candidates then flow to a separate, Windows-specific prove pipeline that helps eliminate remaining false positives, so only the highest-confidence findings reach the engineering team. This automation helps handle a larger volume of potential vulnerabilities and shortens the review window for new ones, shrinking the attack window for zero-day exploits.”

Microsoft said it is also updating its Secure Development Lifecycle (SDL) best practices to take account of “AI-enabled attack techniques and exploit paths.”

However, it was at pains to point out that there would always be human oversight in the process, in order to maintain the high quality of updates.

AI is the Future of Vulnerability Scanning

The news comes after it emerged this week that the US Cybersecurity and Infrastructure Security Agency (CISA) is reportedly using Anthropic Fable to scan for vulnerabilities across government systems.

In April, CISA’s Lindsey Cerkovnik, who represents the agency on the CVE Board, called for frontier AI companies to play a bigger role in software vulnerability disclosures.

However, not everyone is convinced. A Cobalt study from June found that the percentage of organizations relying entirely on AI automation for vulnerability scanning plunged from 29% to 9% between 2025 and 2026.

Over three-quarters (78%) of respondents polled said fully automated scanning tools missed critical vulnerabilities.

AI is also part of the problem as well as the solution. A new Orca Security study published on July 9 claimed that 81% of organizations run vulnerable AI packages, and 99.9% of fixable AI vulnerabilities remain unpatched.



Source

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleNew Avalon Malware Framework Packs CrownX Ransomware Capabilities
Next Article Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages
Team-CWD
  • Website

Related Posts

News

CISA Details Incident Response to Exposed AWS GovCloud Keys

July 10, 2026
News

6 Capabilities That Separate Leaders from Bolt-On AI solutions

July 10, 2026
News

Anthropic and OpenAI Security Tools Could Fuel Cyber-Attacks

July 10, 2026
Add A Comment
Leave A Reply Cancel Reply

Latest News

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

November 24, 202523 Views

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

September 7, 202517 Views

North Korean Hackers Target Crypto Firms with ClickFix and Zoom Lures

April 29, 202610 Views

Why SOC Burnout Can Be Avoided: Practical Steps

November 14, 20259 Views

Cyber M&A Roundup: Cyber Giants Strengthen AI Security Offerings

December 1, 20258 Views
Stay In Touch
  • Facebook
  • YouTube
  • TikTok
  • WhatsApp
  • Twitter
  • Instagram
Most Popular

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

November 24, 202523 Views

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

September 7, 202517 Views

North Korean Hackers Target Crypto Firms with ClickFix and Zoom Lures

April 29, 202610 Views
Our Picks

Find your weak spots before attackers do

November 21, 2025

How it preys on personal data – and how to stay safe

October 23, 2025

In memoriam: David Harley

November 12, 2025

Subscribe to Updates

Get the latest news from cyberwiredaily.com

Facebook X (Twitter) Instagram Pinterest
  • Home
  • Contact
  • Privacy Policy
  • Terms of Use
  • California Consumer Privacy Act (CCPA)
© 2026 All rights reserved.

Type above and press Enter to search. Press Esc to cancel.