Can AI-Powered Security Measures Truly Protect Against AI-Driven Threats?
Security Updates and AI Vulnerabilities
The increasing reliance on artificial intelligence (AI) in software development and testing has raised concerns about the security of these AI tools and routines themselves.
AI Vulnerabilities
Recent reports have highlighted vulnerabilities in AI-powered code, including a high-severity elevation of privilege vulnerability (CVE-2026-0628) in Google’s Gemini AI, which is integrated into the Chrome browser.
Microsoft Introduces New Controls for 365 Copilot AI
In a related development, Microsoft is introducing new controls to limit the files that its 365 Copilot AI assistant can access during data processing.
This move comes after several customers reported that the AI assistant was including confidential information in its reports.
Patch Management Updates
In the world of patch management, Microsoft released a solid set of updates in February, addressing various security issues.
However, the company only released one out-of-band (OOB) patch in March, which addressed a certificate renewal issue affecting Windows Hello for Business in certain Active Directory Federation Services (ADFS) deployments.
This patch, KB 5082314, is cumulative and includes the February Patch Tuesday updates.
Notepad++ Security Update
Notepad++ has also released a security update (version 8.9.2) that incorporates a new “double-lock” design with certificate and signature verification to enhance the security of its update process.
Users are encouraged to update to this version as soon as possible.
Apple Security Updates
Apple has released major security updates for its operating systems, including macOS, iOS, and Safari.
These updates address a total of 133 CVEs across various platforms.
Users are advised to update their systems to the latest versions, including macOS Tahoe 26.3, macOS Sequoia 15.7.4, and macOS Sonoma 14.8.4.
Upcoming Patch Tuesday
Looking ahead to the March 2026 Patch Tuesday, Microsoft is expected to release the usual OS and ESU updates, as well as updates for Office 2016 and Office 2019 apps.
Adobe is also likely to release updates for its Creative Cloud Apps, including Illustrator and Photoshop.
However, the quarterly update for Acrobat and Acrobat Reader is usually scheduled for April.
Google has released the Chrome 146 beta, but it is unclear whether a stable update will be released on Patch Tuesday.
Mozilla has already released major updates for Firefox and Thunderbird, so it is expected to be a quiet week for the company.
Conclusion
As the use of AI technology becomes more widespread, it is essential to exercise caution when allowing AI-powered apps and functionality into networks.
While AI can be a valuable tool for building more secure code and assisting with business functionality, it is crucial to be aware of the potential vulnerabilities that may exist within AI-powered code.