Microsoft says AI will put more fixes in Windows security updates
Microsoft plans to use AI more heavily to find, build and check Windows security fixes while keeping developers involved in reviews.
By Maya Lindqvist · Senior Technology Correspondent
2 min read
Microsoft says Windows 11 security updates are likely to include more fixes as the company adds AI to more parts of its patching process. The change matters for Windows users and IT teams because each security release may address a larger set of flaws at once.
In a Thursday blog post, Microsoft said it is using AI to spot possible problems earlier in the development and security update cycle. As a result, the company said customers should expect a larger number of security fixes in each release.
The company tied the move to a faster-moving threat environment. Microsoft said it is revising its Secure Development Lifecycle so the process more directly covers attack methods and exploit paths that use AI.
Microsoft also said it is trying to preserve update reliability while speeding up its work. The company said it is putting more AI into the security update process and investing in Windows-focused tools and “agentic harnesses” to help create and validate patches.
Human review remains part of the process, according to Microsoft. The company said developers will still check AI-generated findings and make decisions about update risk, including code review.
AI is changing both attack and defense
The security shift comes as AI tools are being used on both sides of vulnerability work. The Verge has reported that hackers, including less-skilled attackers, have increasingly used AI in recent months to exploit software weaknesses more quickly.
Security researchers are also applying AI to find flaws faster. That has helped surface more high-severity bugs, according to The Verge, including the “Copy Fail” vulnerability that affected nearly every Linux distribution in May.
Anthropic made a related claim earlier this year when it announced its Claude Mythos model. The company said Mythos had already found high-severity vulnerabilities in every major operating system.
Microsoft’s plan suggests Windows security releases may become more crowded as AI helps identify and prepare fixes earlier. For customers, the company’s message is that volume will rise, while Microsoft says developers will continue to verify results before updates ship.
This story draws on original reporting from The Verge.