Microsoft released its April 2026 Patch Tuesday addressing 167 security vulnerabilities, including two zero-day exploits currently being leveraged in active attacks.
Microsoft's April 2026 Patch Tuesday covers 167 distinct flaws across multiple product lines. The update includes fixes for two zero-day vulnerabilities—unpatched security holes that attackers have already begun exploiting in the wild.
Zero-day vulnerabilities pose elevated risk because they affect systems before patches become available. Microsoft's rapid acknowledgment and release of fixes for these two exploits reduces the window of exposure for enterprise and consumer users.
The monthly security update addresses vulnerabilities in Windows, Microsoft Office, Edge browser, Azure services, and other enterprise products. Severity ratings range across critical, important, and moderate categories.
Microsoft advises users and administrators to apply the patches promptly. Enterprise environments typically deploy updates across phases to test compatibility before full rollout. Home users can enable automatic Windows updates to receive patches automatically.
The April release continues Microsoft's regular second-Tuesday-of-the-month update schedule, established to provide predictable patching cycles. This consistency allows IT teams to plan maintenance windows and test updates against business-critical systems.
Additional security guidance from Microsoft includes reviewing patching timelines for specific vulnerabilities, as critical flaws may warrant expedited deployment. The company's security advisories provide detailed technical information for each fix, including affected versions and workarounds for systems unable to patch immediately.
Users should verify update installation through Windows Update settings or System Information panels to confirm all April patches have deployed successfully.
Partnered Health, one of Australia's largest healthcare providers, has disclosed a cyber-attack affecting 21 clinics across Sydney, Melbourne, and Canberra. Personal information and medical records were compromised in the breach.
Security firm Intruder has developed an AI-powered system that automatically identifies previously unknown software vulnerabilities by combining code analysis with large language models. The tool already discovered and exploited a WordPress plugin zero-day.
U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.