Microsoft Patch Tuesday Hits Record 206 Vulnerabilities

Microsoft breaks Patch Tuesday record with 206 vulnerabilities

Microsoft addressed a whopping 206 vulnerabilities lurking in its vast portfolio of business products and foundational systems in this month’s Patch Tuesday update, marking the vendor’s largest monthly batch of security patches on record, according to researchers.

The massive assortment of vulnerabilities in Microsoft’s latest defect dump accentuates an alarming trend across technology — fears and warnings about a roaring flood of error-riddled software have materialized. And the disease is spreading.

“It is extraordinary that Microsoft can produce so many patches in a single month, but it does raise concerns,” Dustin Childs, head of threat awareness at Trend Micro’s Zero Day Initiative, wrote in a blog post Tuesday.

Researchers consistently highlight the role artificial intelligence is playing in discovering more vulnerabilities and aiding in the development of patches and testing. Childs isn’t alone in wondering if this is the new normal and how that will impact defenders’ strategies for patch prioritization and deployment.

Law Firm Salaries Climb Despite AI Promise of Lower Costs

Big Law’s associate pay war comes as AI fuels questions about junior attorney hiring at top firms.

A growing number of large law firms are moving to catch up with the new associate salary scale set by Milbank LLP earlier this month. The Manhattan firm, true to its reputation as a first mover on pay, bumped its starting salary for associates to $235,000 on a seniority-based scale that now tops out at $455,000. Litigation powerhouse Susman Godfrey on Monday upped its scale a notch higher, starting at $240,000.

The raises ratchet up the cost of competing for junior talent even as artificial intelligence threatens to upend firms’ core operating model and the associate recruiting market with it. They also put more pressure downstream on firms trying to keep pace with the elite.

Another top White House AI policy adviser is leaving

A top White House policy adviser who helped the administration navigate increasingly urgent questions around advanced artificial intelligence models with far-reaching hacking capabilities is set to depart.

Thomas Lind, the head of policy in the Office of the National Cyber Director and a senior adviser to National Cyber Director Sean Cairncross, plans to leave government soon to spend more time with family, according to two people familiar with the decision, who, like others in this story, were granted anonymity to discuss White House personnel matters.

His exit is the latest in a string of departures from the White House’s tech policy ranks since the release of the long-awaited AI executive order last Tuesday, which had been repeatedly delayed due to infighting over how heavily to regulate the fast-changing technology.

Companies are failing to keep up with AI’s identity sprawl, creating entry points for hackers

Dive Brief:

The rate of data breaches at companies that widely use AI tools is significantly higher than the rate at companies that don’t — 43% compared with 11% over the past 12 months — the identity security firm Netwrix said in a report published on Wednesday.

AI tools such as agents significantly increase organizations’ “identity footprint,” creating more gaps that hackers can exploit, Netwrix said.

At the same time, Netwrix found, the companies using AI the most widely are also the ones taking identity management the most seriously.

Dive Insight:

Netwrix’s report highlights the security risks of the sprawling web of user accounts and other identities that companies must create to use agents, copilots and other AI tools.

“AI agents are now acting on behalf of humans against sensitive data,” Netwrix researchers wrote. “Non-human identities need the same operational rigor long applied to privileged human access.”

Max severity Ivanti Sentry vulnerability now exploited in attacks

Attackers are now targeting a recently patched maximum-severity flaw in Ivanti Sentry, enabling them to execute code with root privileges on Internet-exposed secure mobile gateways.

Formerly known as MobileIron Sentry, the Ivanti Sentry security gateway appliance secures traffic between back-end corporate systems and remote mobile devices.

Tracked as CVE-2026-10520, the maximum-severity vulnerability stems from an OS command injection weakness and was patched by Ivanti on Tuesday with the release of Sentry versions R10.5.2, R10.6.2, and R10.7.1.

While the company said at the time that it had no evidence of in-the-wild exploitation, the Shadowserver nonprofit security organization reported the next day that attackers had already backdoored most of the Sentry gateways exposed online.

The Internet security watchdog also added that, while its scans detect only a very limited number of exposed Sentry instances, there are likely more due to its search engine being blocklisted.

Most Security Teams Struggle to Find Time for Training on New Threats

Many cybersecurity teams are struggling to keep up with emerging technologies and the challenges around securing their organizations against them because they don’t have the time to undertake the necessary training, a new study has warned.

The research, published by ISC2, asked nearly 1000 cybersecurity leaders from large enterprises around the world how their organization approach cybersecurity team training.

Nearly three-quarters of respondents (73%) said their organization’s security training budget has increased over the past year, as businesses react to the emergence of new technologies and cybersecurity challenges that accompany them.

One of the most encountered new challenges is the rise of AI: almost half of respondents (47%) said that AI is the most pressing skill their organization is addressing or planning to address through training.

However, the study found that despite increased resources, organizations experience barriers around supplying training and upskilling to cybersecurity staff.