July 2026's Record Windows Security Update: What Actually Matters for Your PC
Windows · Security Updates
July 2026's Record Windows Security Update: What Actually Matters for Your PC
Microsoft's 14 July 2026 update is being called the biggest Patch Tuesday on record — more than 570 vulnerabilities fixed in one release, including two that were already being used in real attacks before the fix shipped. Headlines like that tend to cause more alarm than they're worth. Here's what genuinely applies to a typical home PC or small business in Carrum Downs and southeast Melbourne, and what doesn't.
What happened, in plain terms
Every second Tuesday of the month — "Patch Tuesday" in the trade — Microsoft ships a bundle of security fixes for Windows and related products. The 14 July 2026 release was unusually large: Microsoft's own count sits at more than 570 vulnerabilities across its products, and two of them were already being actively exploited by attackers before the patch was available.
The two vulnerabilities already being exploited
Both actively exploited flaws are elevation-of-privilege bugs — meaning an attacker who already has some foothold can use them to gain higher-level access:
- CVE-2026-56155 affects Active Directory Federation Services (AD FS), the identity infrastructure some organisations run on their own servers to manage logins across systems.
- CVE-2026-56164 affects on-premises Microsoft SharePoint Server — not SharePoint Online / Microsoft 365, which is hosted and patched by Microsoft itself.
The BitLocker flaw everyone's talking about — and what it actually requires
The third widely reported flaw, CVE-2026-50661, is a BitLocker Device Encryption bypass. It sounds alarming, and it's a genuine, now-patched flaw — but it's important to understand what it actually takes to exploit: an attacker needs your device physically in hand, before it boots, along with specialist hardware to intercept the encryption key directly from the machine's internal wiring or memory. There is no remote or over-the-internet version of this attack, and Microsoft's own exploitability rating for it is "Less Likely" — it is a patched, publicly disclosed flaw, not one confirmed to be under active attack in the wild.
The practical takeaway isn't "panic about hackers on the internet" — it's a reminder that a lost or stolen laptop is a more realistic risk than most people assume, which is exactly why installing security updates (even on an older machine you're not replacing any time soon) still matters.
Why you might see "570" in one place and "620" in another
Different outlets have reported slightly different totals for this release — most commonly around 570, with some reporting closer to 620. Both figures are accurate; they're just counting different things. Microsoft's own tally covers vulnerabilities in its own products. The higher figures some security researchers report include additional third-party CVEs bundled into the same monthly release, such as fixes for the Chromium engine that powers Microsoft Edge. Either way, it's a genuinely large release by historical standards.
What to do right now
If Windows Update is switched on and working normally
Nothing extra is needed. This update installs the same way any other monthly security update does — through Settings → Windows Update. If it's already installed, you're covered for everything in this release.
If your update is stalled, failing, or you're not sure
Check Settings → Windows Update → Update history to see whether the July update installed successfully. A stalled or repeatedly failing update is worth investigating rather than ignoring or force-restarting repeatedly, since it can leave a PC without security fixes it actually needs. If your machine has been showing other odd behaviour after a recent update — including the specific Dell shutdown/overheating issue we covered separately this month — that's a related but distinct problem worth checking on its own terms.
What this month's update actually means, by situation.
Don't let "patch fatigue" become the excuse
Large security releases like this one can make updates feel like background noise — another notification to dismiss. That instinct is understandable, but it's also exactly how genuinely important fixes get missed. You don't need to read every CVE number to stay safe; you just need Windows Update switched on and actually completing, which is the one thing worth checking today.
How Macrotech helps if an update goes wrong
Most updates install cleanly with no drama. When they don't — an update that won't complete, a PC that's slow or unstable afterwards, or uncertainty about whether a specific fix actually applied — that's exactly the kind of thing we check as part of a standard diagnostic at our Carrum Downs workshop, alongside the usual hardware and performance checks.
Local relevance for Carrum Downs and southeast Melbourne
We see a genuine mix of home and small-business Windows PCs come through the workshop from Carrum Downs, Frankston, Cranbourne, Lyndhurst, Langwarrin, Seaford, Skye and Patterson Lakes — and for the overwhelming majority, this month's update is simply another routine (if unusually large) patch to let install normally. If you run your own on-site server for a small business and aren't sure whether it's affected, that's a quick thing for us to check.
Frequently asked questions
Do I need to do anything about this update myself?
For most home and small-business PCs, no — if Windows Update is switched on, the update installs automatically. The two actively exploited flaws this month affect on-premises server software (Active Directory Federation Services and SharePoint Server) that most home users and many small businesses don't run at all.
Is the BitLocker flaw something I should worry about?
It's real and now patched, but it requires an attacker to have your device physically in hand, with specialist hardware, before it boots. It cannot be exploited remotely over the internet. The main practical takeaway is that a lost or stolen laptop is more of a risk than most people assume — which is exactly why keeping Windows updated matters even on an old machine.
Why do different articles report different numbers of vulnerabilities fixed?
Microsoft's own count for July 2026 is 570-plus vulnerabilities in its products. Some outlets report a higher figure (around 620) because they include third-party CVEs bundled into the same monthly release, such as Chromium-based Edge fixes. Both figures are accurate — they're just counting slightly different things.
My Windows Update is stuck or failing — what should I do?
Don't keep force-restarting the PC. A stalled or repeatedly failing update is worth a proper look, since it can leave a machine without the security fixes it needs. We can check what's causing it and get updates flowing again safely.
Does this affect Mac users too?
No — this particular update is Windows-specific. Apple ships its own separate monthly security updates for macOS, which we cover in our Mac-focused articles.
Related Macrotech content & services
Dell laptop shutdown/overheating after the July update · Windows 11 BitLocker lockouts (June update) · Desktop computer repairs · Laptop repairs · Book a service
Update stuck, or PC acting up since mid-July?
Book a diagnostic and we'll check what's actually going on — update-related or not — before any repair goes ahead.
Book a Service Call (03) 8759 1801Macrotech Solutions is an independent computer repair service and is not affiliated with, endorsed by, or sponsored by Microsoft Corporation. "Windows", "BitLocker" and "SharePoint" are trademarks of Microsoft Corporation, used here for description only. CVE details and exploitability ratings are set by Microsoft and third-party security researchers and may be updated as more is learned — see Microsoft's official Security Update Guide for the latest status.