Microsoft has released patches for over 250 vulnerabilities across its software products, including fixes for zero-day flaws (security weaknesses that hackers exploit before the company can fix them) in SharePoint and other applications. However, a zero-day vulnerability in Microsoft Exchange, which is widely used by organizations for email and calendars, remains unpatched and is actively being exploited by attackers. This ongoing wave of vulnerabilities demonstrates the escalating cybersecurity threats mentioned in the original article, as attackers increasingly target enterprise software systems.
Hackers are now using artificial intelligence to launch more powerful cyberattacks called DDoS attacks, which flood websites and networks with so much traffic they crash. Security experts warn these AI-powered attacks learn and adapt faster than traditional ones, making them harder to stop. The trend is accelerating as tensions between Iran and the United States intensify following recent military strikes.
Geopolitical conflicts create opportunities for cyberattacks because governments and hostile groups use hacking as a weapon when regular military options are limited. AI makes these attacks cheaper and more effective because the software can automatically find weaknesses in computer systems without human hackers sitting at keyboards all day. When countries threaten each other militarily, their adversaries often shift to the digital battlefield.
Companies running websites and online services are most at risk, especially banks, hospitals, and power companies that people depend on every day. Small and medium-sized businesses are also vulnerable because they typically have fewer security experts protecting their systems. People who use these services could experience outages, slower internet, or data breaches if attacks succeed.
India's cybersecurity agency, CERT-In, has ordered companies to patch their internet-facing computer flaws within 12 hours instead of the usual 30 days, signaling how serious the threat has become. Other governments and security companies are likely to issue similar urgent warnings in the coming weeks. Organizations that cannot patch their systems quickly will become targets for AI-driven attacks designed to find and exploit old, known weaknesses.