“Pick one repetitive ticket type your team handles constantly. Write down every step you take to resolve it. That document is the first step to automating it — and it costs you nothing but 20 minutes.”
Microsoft 365 Free/Busy Scheduling Issue in Exchange Online
Cross-tenant and on-premises free/busy lookups fail via Outlook Scheduling Assistant, showing availability as 'Unknown'. Microsoft identified a recent service update that enabled an unvalidated authentication pathway causing request failures. Fix expected by May 20, 2026.
Read more →Microsoft Teams Webinar Modification Issue for Technical Preview Users
Some users with Technical Preview access unable to modify existing webinars in Microsoft Teams. Service degradation reported May 12, 2026 at 06:54 UTC. Next update expected by May 12 08:30 UTC.
Read more →Exchange Online Text Translation Rendering Issue Reported May 12
Service degradation affecting Exchange Online where users' text turns blank when translated from reading pane in Outlook desktop and Outlook on web. Reported May 12, 2026 at 09:52 UTC with next update expected at 10:30 UTC.
Read more →Microsoft May 2026 Patch Tuesday: 118 CVEs, No Zero-Days in Wild
Microsoft released 118 CVEs (16 critical, 102 important) in May 2026 Patch Tuesday with no zero-days exploited in the wild or newly disclosed—first time since June 2024. Includes critical elevation of privilege vulnerabilities in Windows Kernel and Microsoft SSO Plugin for Jira/Confluence (CVE-2026-41103, CVSS 9.1).
Read more →Palo Alto PAN-OS CVE-2026-0300 Patches Rolling Out May 13, Limited Exploitation Observed
Palo Alto Networks releasing patches for CVE-2026-0300 zero-day affecting User-ID Authentication Portal on PA and VM series firewalls on May 13, with second wave May 28. Limited exploitation detected; CVSS 9.3. Mitigation: restrict portal access to trusted IPs until patched.
Read more →SonicWall SMA1000 SQL Injection CVE-2026-4112 Patched; Privilege Escalation Risk
SonicWall released patches for four SMA1000 firewalls including high-severity SQL injection CVE-2026-4112 allowing read-only admins to escalate to primary admin. Three additional patched vulnerabilities enable SSL VPN credential enumeration and TOTP bypass. Update immediately.
Read more →Firewall Attack Surge: 56% of Q1 2026 Incidents Target SonicWall and Fortinet Devices
Barracuda Managed XDR reports brute-force attacks on SonicWall and FortiGate devices dominated Q1 2026 incidents at 56%. Over 430,000 SonicWall firewalls exposed publicly; 88% of malicious traffic originated from Middle East cluster. Legacy vulnerabilities CVE-2024-40766 and CVE-2026-24858 actively exploited.
Read more →ConnectWise 2026 MSP Threat Report: Identity Abuse Dominates Attack Surface
ConnectWise released its 2026 MSP Threat Report highlighting identity abuse as the primary attack vector. Ransomware operators shifted focus from encryption innovation to faster, more reliable access methods exploiting credentials, misconfigured VPNs, and trusted updates.
Read more →NinjaOne Reaches $5B Valuation with Gartner Leader Recognition and Q1 Expansion
NinjaOne (rebranded from NinjaRMM) reached $5B valuation with 35,000+ customers and $500M+ annual recurring revenue. Earned Gartner Leader quadrant on first appearance, signed Audi F1 partnership, and launched IT asset management and vulnerability management in Q1 2026.
Read more →NinjaOne Launches Ninja Data Protection BDR Platform for MSPs
NinjaOne (formerly NinjaRMM) launched Ninja Data Protection, a native backup and disaster recovery platform with file/folder and image backup, incremental block-level technology, AES 256-bit encryption, and buffered delete protection integrated into flagship RMM platform.
Read more →This is what you get — every weekday, free.
Subscribers get the full “From the Floor” take with every issue — not just the news summary you just read.
Written from 12 years on the helpdesk floor. Always free.