Microsoft’s Intune what’s-new page notes that hotpatch updates are enabled by default for all eligible devices managed through Windows Autopatch starting with the May 2026 Windows security update.
Hotpatch updates are designed to install faster and require fewer restarts. Microsoft also describes opt-out options through tenant-level settings and quality update policies for organisations that need more time.
Why It Matters
Patch speed and restart disruption are persistent endpoint management problems. If hotpatching reduces restart pressure, it can help security teams close update gaps without creating as much user friction.
The practical step is to check Autopatch eligibility, review update rings, define exception groups, and make sure reporting shows whether devices are actually receiving the expected update behaviour.