1. Forum
  2. tqwNet
  3. TQW GENTECH

  • Microsoft unveils MDASH, its AI agent-driven security platform a

    From TechnologyDaily@1337:1/100 to All on Thursday, May 14, 2026 11:45:25
    Microsoft unveils MDASH, its AI agent-driven security platform and it's already spotted a host of new Windows flaws

    Date:
    Thu, 14 May 2026 10:35:00 +0000

    Description:
    100 AI agents worked in unison to discover 16 flaws, including four critical-severity ones.

    FULL STORY ======================================================================Copy link Facebook X Whatsapp Reddit Pinterest Flipboard Threads Email Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Subscribe to our newsletter Microsoft unveiled MDASH, an AIpowered vulnerability discovery platform orchestrating 100+ agents MDASH found 16 new Windows flaws, including four critical RCEs (CVE202633827 in tcpip.sys and CVE202633824 in IKEv2) patched in May updates Platform showed high accuracy with zero false positives in testing, now used internally and
    in private preview Microsoft has announced MDASH, its newest AI-powered cybersecurity platform, which has reportedly already helped it discover 16 previously unknown vulnerabilities in different Windows components, including two critical-severity remote code execution vulnerabilities.

    Built by Microsofts Autonomous Code Security Team and the Windows Attack Research and Protection group, MDASH is short for Multi-Model Agentic
    Scanning Harness and works by orchestrating more than 100 specialized AI agents. The 16 vulnerabilities MDASH recently spotted were discovered in the Windows TCP/IP stack, the IKEEXT IPsec service, HTTP.sys, Netlogon, DNS resolution, and the Telnet client. Ten were kernel-mode, and six user-mode. Theoretical threat actors could have reached most of them, unauthenticated, remotely, it was said. Latest Videos From You may like OpenAI releases Codex Security to spot the next big cyber risks to your company, promises to 'identify complex vulnerabilities that other agentic tools miss' Shadow AI 'double agents' are outpacing security visibility and that's a serious concern for UK businesses Weak safeguards leave thousands of AI agents open
    to attack Avoiding false positives Kim explained that of the 16 flaws, four were rated critical severity. One of them, described as a remote unauthenticated use-after-free in tcpip.sys, is now tracked as
    CVE-2026-33827. Another one, tracked as CVE-2026-33824, was described as a double-free in the IKEv2 service reachable over UDP port 500.

    Microsoft also claims MDASH is great at avoiding false positives. During testing, the researchers planted 21 vulnerabilities, and MDASH allegedly
    found all of them with zero false positives.

    96% recall against five years of confirmed Microsoft Security Response Center (MSRC) cases in clfs.sys and 100% in tcpip.sys; and an industry-leading
    88.45% score on the public CyberGym benchmark of 1,507 real-world vulnerabilitiesthe top score on the leaderboard, roughly five points ahead of the next entry, Microsofts VP for Agentic Security, Taesoo Kim explained.

    The platform is currently being used internally, by Microsofts engineers, and is being tested by a small set of customers in a private preview. Are you a pro? Subscribe to our newsletter Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed! Contact me with news and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors By submitting
    your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

    AI vulnerability discovery has crossed from research curiosity into production-grade defense at enterprise scale, and the durable advantage lies in the agentic system around the model rather than any single model itself, Kim concluded. The best antivirus for all budgets Our top picks, based on real-world testing and comparisons

    Read our full guide to the best antivirus 1. Best overall: Bitdefender Total Security 2. Best for families: Norton 360 with LifeLock 3. Best for mobile: McAfee Mobile Security Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds.



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/microsoft-unveils-mdash-its-ai-agent-dr iven-security-platform-and-its-already-spotted-a-host-of-new-windows-flaws


    --- Mystic BBS v1.12 A49 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)