July 15, 2026
July 15, 2026
KrebsOnSecurity reports that Microsoft’s June 2026 Patch Tuesday was a record-breaking release, fixing nearly 200 security flaws across Windows and other supported Microsoft products. Nearly three dozen were rated critical, and exploit code was already public for at least three vulnerabilities, including issues affecting IIS, Windows Collaborative Translation Framework, and BitLocker. The article also notes Microsoft’s view that AI-assisted vulnerability discovery is contributing to the growing volume of reported bugs.
The article places the Microsoft update in a wider security context, noting that Rapid7 counted hundreds of additional browser vulnerabilities addressed outside the normal Patch Tuesday total. It also highlights a Visual Studio Code zero-day involving GitHub token theft, Microsoft’s dispute with the researcher “Nightmare Eclipse,” Shai-Hulud worm infections in Microsoft-linked repositories, and major update bundles from Adobe and Google. Krebs advises users to back up data before applying operating-system updates.
Source: KrebsOnSecurity