Microsoft’s record Patch Tuesday, and it says AI found the bugs
Microsoft has never shipped a bigger security update. Its July Patch Tuesday fixed a record haul of flaws, and the company says AI is why the count keeps climbing.
The scale is hard to ignore. By Microsoft’s own count, the update patched 622 vulnerabilities. That more than tripled June’s tally, which had set a record of its own. Krebs on Security, which first reported the release, put the figure at 570. Another 428 Chromium bugs in Edge sit on top.
Three zero-days, two under attack
Fifty-eight of the flaws count as critical. Three are zero-days, which means they were public or exploited before a fix existed. Two of those are already in active use.
The first, CVE-2026-56155, lets an attacker raise their privileges through Active Directory Federation Services, the system that signs a network’s logins. The second, CVE-2026-56164, does the same through on-premises SharePoint. Neither carries a scary...
Copyright of this story solely belongs to thenextweb.com. To see the full text click HERE