## Microsoft Addresses Record Number of Vulnerabilities **Microsoft**'s April Patch Tuesday brings fixes for a staggering 167 security vulnerabilities affecting **Windows** and related software. IT security professionals are urged to prioritize patching to mitigate potential risks.  ## SharePoint Server Zero-Day Under Active Attack Redmond is warning that attackers are actively exploiting **CVE-2026-32201**, a critical vulnerability in **Microsoft SharePoint Server**. This flaw allows attackers to spoof trusted content or interfaces over a network, potentially leading to phishing attacks and unauthorized data manipulation. **Mike Walters**, president and co-founder of **Action1**, emphasizes the severity, stating that **CVE-2026-32201** can be leveraged to deceive employees, partners, or customers by presenting falsified information within trusted **SharePoint** environments. ## BlueHammer: Windows Defender Privilege Escalation **Microsoft** has also addressed **BlueHammer** (**CVE-2026-33825**), a privilege escalation bug in **Windows Defender**. The exploit code for this vulnerability was publicly released after the researcher grew frustrated with **Microsoft**'s response. **Will Dormann**, senior principal vulnerability analyst at **Tharros**, has confirmed that the public exploit no longer works after applying the latest patches. ## Industry Insights and Broader Implications **Satnam Narang**, senior staff research engineer at **Tenable**, notes that this is the second-largest Patch Tuesday ever for **Microsoft**. He also points to indications that **CVE-2026-34621**, an Adobe zero-day patched on April 11, has been actively exploited since at least November 2025. **Adam Barnett**, lead software engineer at **Rapid7**, highlights the nearly 60 browser vulnerabilities included in this update, calling it a new record. While speculating whether recent advancements in AI vulnerability detection, such as **Anthropic**'s **Project Glasswing**, contributed to the surge, he acknowledges that **Microsoft Edge**'s reliance on the Chromium engine and the wide range of researchers acknowledged by the Chromium maintainers are likely contributing factors. Barnett concludes, "A safe conclusion is that this increase in volume is driven by ever-expanding AI capabilities. We should expect to see further increases in vulnerability reporting volume as the impact of AI models extend further, both in terms of capability and availability." ## Browser Security: A Constant Vigil Regardless of the browser used, regularly closing and restarting it is crucial to ensure that available updates are installed. For instance, a recent **Google Chrome** update addressed 21 security holes, including the high-severity zero-day flaw **CVE-2026-5281**. For a detailed breakdown of each patch, refer to the **SANS Internet Storm Center**'s [Patch Tuesday roundup](https://isc.sans.edu/forums/diary/Microsoft%20Patch%20Tuesday%20April%202026./32898/).