A vulnerability in Microsoft Surface hardware allowed an unpatched device to be permanently bricked by sending a single malicious network packet. The flaw was reportedly exposed inadvertently by Microsoft’s own Copilot AI. Microsoft has largely addressed the issue, though the word ‘mostly’ in the disclosure suggests remediation may not be complete across all affected hardware.

Security Architect’s Take: Ensure all Surface devices in your estate have received the latest firmware updates immediately, and review endpoint management policies to confirm firmware patching is enforced through Intune or equivalent MDM. Given the DoS-via-single-packet nature of this flaw, also assess whether Surface devices are adequately isolated from untrusted network segments.

Original advisory: Microsoft has mostly repaired a flaw in Surface hardware that allowed unprotected devices to be bricked by a single packet