“Block out Palo Alto firmware update maintenance windows in your schedule today for every affected client. Send the notifications now. If you wait until you 'have time', you won't have time.”
M365 Service Degradation: South America Connectivity Issues with Email & Teams Access Disruption
Microsoft 365 users in South America are experiencing intermittent connection disruptions, email delivery delays, and partial access to Outlook, Teams, SharePoint, and OneDrive. Status marked as 'Restoring' as of May 14. Workaround: restart Teams app and sign out/in to apply configuration updates.
Read more →Teams Webinar Modification Technical Preview Issue Deployment Completing May 14
Technical Preview users unable to modify existing webinars in Microsoft Virtual Events. Microsoft anticipated deployment completion by May 14, 2026 to resolve issue. No user workaround required pending patch completion.
Read more →Copy Fail CVE-2026-31431: Linux Privilege Escalation Under Active Exploitation with CISA KEV Listing & Federal Deadline
CISA added CVE-2026-31431, a local privilege escalation flaw affecting Linux distributions, to its Known Exploited Vulnerabilities catalog citing evidence of active exploitation. Federal patch deadline is May 15. Workaround: disable AF_ALG socket creation; patch immediately via kernel updates for Ubuntu, RHEL, SUSE, Amazon Linux.
Read more →Microsoft May 2026 Patch Tuesday: 137 CVEs Patched, No Zero-Days for First Time Since June 2024
Microsoft's May 2026 Patch Tuesday included 137 CVEs with 14 having critical CVSS base scores. Notable flaws include CVSS 9.9 RCE in Dynamics 365 on-premises and Word preview pane RCE issues. First zero-day-free release in 22 months.
Read more →Palo Alto PAN-OS CVE-2026-0300 Zero-Day RCE: Patches Rolling May 13 & 28, Interim Configuration Mitigation Required
CVE-2026-0300 is a critical buffer overflow in the User-ID Authentication Portal allowing unauthenticated RCE with root privileges on PA-Series and VM-Series firewalls. Fixed builds rolling May 13 and 28, 2026. Interim mitigation: restrict User-ID Authentication Portal access to only trusted zones.
Read more →Firewall Vulnerability Landscape: Palo Alto, SonicWall, Fortinet & Cisco Edge Devices Remain Highest-Value Attack Targets
2026 has seen exploited zero-days in three major firewall product lines — Cisco ASA, Fortinet FortiClient EMS, and PAN-OS. SonicWall SSLVPN and Fortinet FortiGate remain actively exploited via ransomware groups. Prioritize internet-facing firewalls and VPN gateways for urgent patching.
Read more →NinjaOne Reaches $5B Valuation; Lands Gartner Leader Quadrant & Audi Formula 1 Partnership
NinjaOne valued at $5 billion with $500M+ ARR; achieved Gartner Leader quadrant on first appearance and signed multi-year Audi F1 partnership. Expanding beyond mid-market MSPs into enterprise and healthcare segments with integrated endpoint, patch, backup, MDM, and vulnerability management.
Read more →RMM Market 2026: NinjaOne, ConnectWise, Datto Leadership; Architecture & Pricing Strategies Diverge for MSP Scale
Kaseya holds ~26% RMM market share through acquisition-driven consolidation; ConnectWise at 25%. NinjaOne built single cloud-native architecture; larger competitors face integration complexity. Pricing models vary: NinjaOne per-device, ConnectWise per-technician, Datto per-endpoint. Smaller MSPs favor per-tech models.
Read more →This is what you get — every weekday, free.
Subscribers get the full “From the Floor” take with every issue — not just the news summary you just read.
Written from 12 years on the helpdesk floor. Always free.