Microsoft has released security updates to fix more than 100 vulnerabilities in its Windows operating systems and other software.
Thirteen of the bugs were rated critical by Microsoft, meaning they could be used by malicious actors to gain remote access to a Windows system without any help from users.
One of the most significant flaws affects Microsoft Exchange Server, which allows an attacker to compromise an organisation’s entire cloud environment, including Exchange Online and other Microsoft Office 365 services.
A vulnerability in Windows Kerberos authentication system also allows attackers to gain domain administrator privileges.
To mitigate these threats, users are advised to prioritise installing these updates and follow security best practices more broadly.
For those using Windows 10, it is also worth noting that Microsoft will cease to ship free security updates for the operating system after the Patch Tuesday on October 14, 2025.
Users who do not wish to upgrade to Windows 11 may consider alternative options, such as Linux Mint, which will run on any computer produced in the past decade.