Cybersecurity Daily: News & Threats · 15 Jul 2026 · 5 min

Patch Tuesday Record: 570 Fixes, 2 Zero-Days, One July 17 Deadline

Microsoft's July 2026 Patch Tuesday drops a record 570 security fixes — including two actively exploited zero-days targeting SharePoint and AD FS with hard CISA deadlines. AI is accelerating both sides of the fight, and defenders are running out of buffer time.

Cybersecurity Daily: News & Threats
Now Playing
Patch Tuesday Record: 570 Fixes, 2 Zero-Days, One July 17 Deadline

Audio is available on Spreaker — see link below.

What's covered

Two Zero-Days Under Active Attack

Two Microsoft zero-days are being actively exploited right now, and one of them has a patch deadline of July seventeenth. That's not a soft recommendation.

Listen now →

SharePoint Zero-Day — July 17 Deadline

The more urgent of the two is CVE-2026-56164, a privilege escalation flaw in SharePoint Server. Here's what makes it particularly dangerous: an attacker doesn't need credentials to exploit it.

Listen now →

Exchange RCE and BitLocker Bypass

Two other vulnerabilities deserve attention even without confirmed active exploitation. CVE-2026-55005 is a heap-based buffer overflow in Exchange Server.

Listen now →

AI Running Both Sides of the Fight

The five hundred and seventy-fix volume isn't just a story about threats. Microsoft credits expanded AI-assisted vulnerability discovery for a significant portion of that increase.

Listen now →

AI Reliability Gap in Defense

The defensive side of AI is under pressure too. A twenty twenty-six SANS survey found that sixty-three percent of security practitioners report significant shortcomings in AI-driven threat detection and response.

Listen now →

What to Watch Next

The near-term watchpoints are straightforward. The July seventeenth SharePoint deadline is the most urgent.

Listen now →

Chapter summary auto-generated from the verified script. Listen to the full episode for the complete content.

More episodes

From Cybersecurity Daily: News & Threats