Home » Technology » Artificial Intelligence » Microsoft warns: AIs will make Patch Tuesdays more complex

Microsoft warns: AIs will make Patch Tuesdays more complex

Artificial intelligence is changing cybersecurity. Microsoft is now using a new AI system to detect vulnerabilities in Windows more quickly. For users and administrators, this means more security, but also significantly more extensive updates.

AI system scans Windows code

Microsoft is now increasingly relying on artificial intelligence to detect security gaps in its own operating system. The newly developed system called MDASH scans the Windows source code for errors. The goal is to find and fix vulnerabilities before attackers can exploit them. The technology is intended to significantly shorten the time between the discovery of a bug and the deployment of a patch. Until now, developers have relied primarily on manual reviews and static code analysis to search for vulnerabilities. However, these methods are time-consuming and have their limits given the enormous size of the Windows source code. With the help of AI, the Redmond-based company now wants to react proactively to complex threats.
Watch on YouTube
The abbreviation MDASH stands for Microsoft Security Multi-Model Agentic Scanning Harness, i.e. agent-based scanning system for multiple models. It uses over a hundred specialized AI agents working in parallel. First, an initial pipeline scans important binaries for potential errors. Various AI models then discuss with each other whether a discovery can actually be exploited. A final testing instance consistently filters out false reports so that in the end only genuine errors end up with the responsible developers.

More updates for end users

The use of the new technology is already having a concrete effect. In May 2026, the system found 16 previously unknown gaps. This leads to a significantly higher number of bug fixes. Patch Tuesday in June 2026 recorded a high with over 200 vulnerabilities closed. For administrators and end users, this means more effort for regular system maintenance. As the Redmond company writes in a blog post, the internal development processes are being adapted to the high pace. To prevent incorrect updates from paralyzing productive systems, Microsoft uses Known Issue Rollback. The technology allows you to specifically undo individual problematic changes without having to uninstall the entire security update.

Automation becomes mandatory

Despite the extensive internal testing, there remains a certain residual risk of incompatibilities when updates appear at such a high frequency. Microsoft therefore strongly recommends switching to a risk-based and continuous patching strategy. Tools like Windows Autopatch or Microsoft Intune are designed to help IT managers automate the process. Ultimately, searches using artificial intelligence lead to a safer operating system because the window of opportunity for so-called zero-day exploits is reduced. At the same time, however, the burden on IT departments is increasing. They must promptly test the growing volume of updates for compatibility and distribute them securely across the network. The new system brings more Windows updates, but also more security.

Leave a Reply