Endpoint management insights, Patch Tuesday analysis, and security intelligence from the team at Patchblox.
AI can now discover and exploit zero-day vulnerabilities autonomously. But patching still runs at human speed. With less than 1% of AI-discovered vulnerabilities patched, the defen…
A disgruntled researcher has dropped six Windows zero-day exploits in six weeks, including a BitLocker bypass and Defender privilege escalation. Three remain unpatched. Here's what…
From a 23-year-old Linux kernel flaw found by Claude Code to Mythos Preview discovering thousands of zero-days across every major OS, AI-driven vulnerability discovery has gone fro…
Analysis of Patch Tuesday trends from December 2025 through May 2026: rising zero-day counts, update regressions, AI-discovered vulnerabilities, and what they mean for enterprise p…
Microsoft's May 2026 Patch Tuesday fixes 137 vulnerabilities with no actively exploited zero-days for the first time in months, but includes 31 critical CVEs including a CVSS 9.9 i…
Microsoft's April 2026 Patch Tuesday is the second-largest ever with 163 CVEs, two zero-days including an exploited Microsoft Defender flaw, and a server update that caused domain…
Microsoft's March 2026 Patch Tuesday fixes 84 vulnerabilities including two publicly disclosed zero-days, 8 critical CVEs, and a CVSS 9.8 remote code execution flaw discovered by a…
Microsoft's February 2026 Patch Tuesday addresses 55 vulnerabilities including six actively exploited zero-day flaws targeting Windows Shell, SmartScreen, Word, Desktop Window Mana…
Microsoft's January 2026 Patch Tuesday broke Remote Desktop authentication and shutdown functionality across enterprise environments. Here's what happened, why it happened, and how…
Microsoft's first 2026 Patch Tuesday addresses 114 flaws including one actively exploited zero-day, 8 critical vulnerabilities, and an update that broke Remote Desktop and shutdown…
Microsoft closes out 2025 with 57 security fixes including one actively exploited zero-day, two publicly disclosed vulnerabilities, and a total of 1,129 CVEs patched for the year.
A CVSS 9.8 remote code execution vulnerability in WSUS turned the patch delivery infrastructure into an enterprise-wide attack surface. The first fix was incomplete. Here's what ha…