Microsoft faces two distinct issues this week: Fox Tempest’s abuse of Azure Artifact Signing to issue fraudulent Authenticode certificates to ransomware operators (no CVE, resolved by domain seizure and certificate revocation), and CVE-2026-45585, a public zero-day BitLocker bypass on Windows 11 and Server 2025 that requires physical access and a USB device but has a working proof-of-concept and a manual-only remediation path. Both items require active defender response despite the absence of automated patch delivery.