Microsoft just released its first round of Patch Tuesday updates this year and you should update your Windows PC right now to stay safe.

Microsoft fixed over 150 vulnerabilities on Update Tuesday in January. These include 11 security vulnerabilities categorised as critical and several Windows vulnerabilities that are already being exploited for attacks.

The January 2025 security update for Windows 11, version 24H2 expands the list of vulnerable drivers that could be used in Bring Your Own Vulnerable Driver attacks. BYOVD Vulnerabilities in kernel drivers could allow threat actors to sneak malware into the kernel.

Microsoft has released its January updates, addressing hundreds of bugs, with the majority deemed serious. But have these threats been slightly overestimated again? The security bulletins available on the Microsoft Security Response Center website,

Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three “zero-day” weaknesses that are already under active attack. Redmond’s inaugural Patch Tuesday of 2025 bundles more fixes than the company has shipped in one go since 2017.

Microsoft released security updates for eight zero-day flaws in its first Patch Tuesday of 2025, with three of the vulnerabilities under active exploitation. Microsoft defines zero-day vulnerabilities as software flaws that have either been publicly disclosed or are being actively exploited, with no patch available.