Krebs on Security ·EN-US Restricted Exploited in the wildWindowsActive Directory Federation ServicesSharePoint
Microsoft Patches a Record 570 Security Flaws
CVE Tools coverage
Microsoft has issued a record-breaking 570 security patches this month, addressing critical vulnerabilities in Windows, Active Directory Federation Services, SharePoint, BitLocker, and Copilot. Among these are three actively exploited zero-day flaws, including two elevation of privilege bugs such as CVE-2026-56155 and CVE-2026-56164. Nearly 60 of the patched issues were deemed 'critical' due to their potential for remote code execution or system takeover without user interaction. The surge in patch counts is attributed to AI-driven vulnerability discovery, prompting concerns about the need for updated exploitability assessments that account for AI's accelerating threat landscape.