“Before deploying any AI tool in your business or for a client, get a clear answer to one question: what data will this model see, and where does it go after? If you can't answer that clearly, it's not ready to deploy.”
Teams Meeting Add-in Causes Classic Outlook Crashes
Microsoft Teams Meeting Add-in version 26043.2016.4478.2773 causes Classic Outlook crashes on startup for affected users. Workaround: disable Teams Meeting Add-in via Teams Settings or perform Online Repair of Office and update to latest build.
Read more →New Outlook Migration Deadline Now March 2027 for Enterprise
Microsoft extended classic Outlook support deadline from April 2026 to March 2027 for enterprise customers, but on-premises Exchange migration must complete by then. Organizations still on hosted Exchange outside Microsoft should model cost of migration now.
Read more →CVE-2026-31431: Linux Copy Fail Privilege Escalation Actively Exploited
CVE-2026-31431 (CVSS 7.8) is a 9-year-old Linux kernel local privilege escalation flaw enabling unprivileged users to obtain root. CISA added it to KEV catalog after active exploitation confirmed; FCEB agencies must patch by May 15, 2026.
Read more →Dirty Frag Linux Vulnerabilities CVE-2026-43284 & CVE-2026-43500 Under Active Attack
Linux kernel networking and memory-fragment handling vulnerabilities (esp4, esp6, rxrpc) enable reliable privilege escalation from unprivileged user to root. CVE-2026-43284 patched May 8; CVE-2026-43500 patches not yet available but exploitation is active.
Read more →Weaver E-cology RCE CVE-2026-22679 Actively Exploited via Debug Endpoint
CVE-2026-22679 (CVSS 9.8) in Weaver E-cology 10.0 before 20260312 allows unauthenticated RCE via exposed debug endpoint. Active exploitation confirmed since March 17, 2026 with MSI malware delivery attempts.
Read more →cPanel/WHM Authentication Bypass Actively Exploited Since Late February
Critical authentication bypass bug in cPanel/WHM admin interface grants administrative access without credentials. Exploit attempts dated back to late February 2026; major hosting providers including Namecheap and HostGator blocked cPanel access while patching.
Read more →Chrome Zero-Day CVE-2026-2441 Actively Exploited – Patch Delivered February 13
CVE-2026-2441 is an actively exploited Chrome/Chromium remote code execution vulnerability affecting browsers including Edge, Brave, and headless cloud workloads. Patched builds: Chrome 145.0.7632.75/76 (Windows/macOS), 144.0.7559.75 (Linux).
Read more →Palo Alto PAN-OS Zero-Day CVE-2026-0300 Requires Configuration Mitigation Until May 13
CVE-2026-0300 (CVSS 9.3) in PAN-OS User-ID Authentication Portal (Captive Portal) allows unauthenticated root-level RCE on PA-Series and VM-Series firewalls. No patch available until May 13, 2026; workaround: restrict portal access to trusted zones only.
Read more →Fortinet FortiClient EMS CVE-2026-35616 Pre-Auth API Bypass Under Active Exploitation
CVE-2026-35616 (CVSS 9.1) in FortiClient EMS 7.4.5–7.4.6 enables pre-authentication API access bypass and privilege escalation. CISA added to KEV with May 12 patch deadline for FCEB; hotfix available now, full patch in v7.4.7.
Read more →NinjaOne Achieves Gartner Leader Quadrant on First Appearance in 2026
NinjaOne (formerly NinjaRMM) landed in Gartner's Magic Quadrant Leader position for Endpoint Management on first listing, with healthcare adoption nearly doubling sector revenue. Now valued at $5B with unified native platform across 9 capabilities.
Read more →NinjaOne Signs Multi-Year Formula 1 Partnership with Audi Revolut Team
NinjaOne announced January 2026 partnership as official endpoint management, MDM, and backup provider for Audi's debut FIA Formula 1 team starting March 2026, managing factory and trackside global operations.
Read more →This is what you get — every weekday, free.
Subscribers get the full “From the Floor” take with every issue — not just the news summary you just read.
Written from 12 years on the helpdesk floor. Always free.