Security News

Cybersecurity news aggregator

INFO News SC Media

Microsoft details new AI system for vulnerability discovery

airesearchsoftware-development
  • What: Microsoft unveils AI system for vulnerability discovery
  • Impact: AI identified 16 new vulnerabilities in Windows components
Read Full Article →

AI/ML Microsoft details new AI system for vulnerability discovery May 14, 2026 Share By SC Staff Credit: Gary Hershorn/Getty Images Silicon Angle reports that Microsoft has detailed a new artificial intelligence-powered vulnerability discovery system, code-named MDASH, which has already identified 16 previously unknown flaws in Windows networking and authentication components. Four of these critical vulnerabilities were patched in this month's Patch Tuesday release. The MDASH system, developed by Microsoft's Autonomous Code Security team, utilizes over 100 specialized AI agents to find and validate exploitable bugs. The discovered vulnerabilities affect key Windows components like the TCP/IP stack, IPsec service, and Netlogon, with many being network-reachable without requiring credentials. Four critical flaws, including remote code execution bugs like a use-after-free in tcpip.sys and a double-free in the IKEv2 service, are among the addressed vulnerabilities. Microsoft highlighted MDASH's performance on various benchmarks, demonstrating high recall and accuracy in identifying vulnerabilities that traditional scanners might miss. The system's architecture involves a pipeline of specialized AI agents for scanning, validation, and proof, incorporating both frontier and distilled models. MDASH is currently being used internally by Microsoft and is in private preview with select customers, signaling a significant advancement in AI-driven cybersecurity. Source: Silicon Angle An In-Depth Guide to AI Get essential knowledge and practical strategies to use AI to better your security program. Learn More SC Staff Related AI benefits/risks How Agentic AI made org charts obsolete James Robinson May 14, 2026 AI has blown up role-based access – here’s how teams can change their mindset in this new era. AI/ML JupiterOne launches new AI risk management tools SC Staff May 14, 2026 The company introduced AI Attack Surface Management (AI ASM) and Unified Vulnerability Management (UVM). AI/ML OpenAI Daybreak joins growing movement of AI-driven vulnerability discovery Laura French May 14, 2026 The program aims to leverage GPT models and Codex Security to improve software resilience. Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe You can skip this ad in 5 seconds

Related Articles

INFO Hyoketsu - Solving the Vendor Dependency Problem in Reverse Engineering Reddit r/netsec INFO Sandboxing AI coding agents with kernel-level enforcement: built-in profiles for Claude Code, Codex, and OpenCode Reddit r/netsec INFO Backslash Security raises $19 million to address AI coding security risks Help Net Security INFO How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development SecurityWeek
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn