“Before you shut your laptop today — think of one client you haven't spoken to in a while. Send them a quick message, no agenda. Just checking in. That's the part of the job that actually builds the relationship.”
Office 365 Connectors Decommission Deadline May 18, 2026
Microsoft is finalizing the retirement of Office 365 Connectors in Teams with full decommissioning scheduled for May 18, 2026. Organizations must complete migration to Workflows webhooks before this deadline to avoid disruption.
Read more →Microsoft Teams Diacritics Display Name Corruption Affecting Inbound Call Notifications
Teams call notifications display corrupted characters for users with diacritics in display names due to a prior character encoding fix that unintentionally corrupted valid UTF-8 special characters. Microsoft identified the issue and is reverting the update with fixes expected by May 20, 2026.
Read more →Teams Browser Access Blocked for Unsupported Browsers Starting May 15, 2026
Microsoft Teams web access now requires browsers supporting ECMAScript 2022 (ES2022) standards. Users on unsupported browsers will see reminder banners through May 14, then access will be blocked starting May 15, 2026. Desktop and mobile clients are unaffected.
Read more →CVE-2026-31431 (Copy Fail) Linux Privilege Escalation Hits CISA KEV Catalog with May 15 Federal Deadline
CISA added CVE-2026-31431—a 9-year-old Linux kernel privilege escalation (CVSS 7.8)—to its Known Exploited Vulnerabilities catalog with active exploitation in the wild and a federal patching deadline of May 15, 2026. A 732-byte Python script roots Ubuntu, RHEL, SUSE, and Amazon Linux without modification, making it uniquely dangerous across multi-tenant and containerized environments.
Read more →Windows Netlogon and DNS Client RCE Flaws Demand Priority Patching
CVE-2026-41089 (Windows Netlogon stack-based buffer overflow) and CVE-2026-41096 (Windows DNS Client heap-based buffer overflow) both carry CVSS 9.8 and require no internet reachability to exploit. Inside-perimeter attackers can pivot from initial access to lateral movement and privilege escalation in a single afternoon; patch immediately.
Read more →May 2026 Patch Tuesday: 137 CVEs Patched, No Zero-Days for First Time Since June 2024
Microsoft released 137 CVEs on May 12, 2026, with 14 critical-severity ratings and no zero-days—breaking a 22-month streak of monthly zero-day patches. Notable flaws include Windows Netlogon (CVE-2026-41089) and DNS Client (CVE-2026-41096) RCE vulnerabilities with CVSS 9.8, plus six Microsoft Word RCE flaws exploitable via Preview Pane.
Read more →Palo Alto PAN-OS CVE-2026-0300 RCE: Patches Released May 13, CISA Directive Updated
Palo Alto's critical User-ID Authentication Portal vulnerability (CVE-2026-0300) allows unauthenticated RCE with root privileges on PA and VM-Series firewalls. Patches rolled on May 13, 2026. Interim mitigation: restrict captive portal access to trusted zones or disable if unnecessary.
Read more →Cisco SD-WAN Authentication Bypass Actively Exploited: May 15 Federal Deadline
Cisco SD-WAN systems contain an actively exploited authentication bypass vulnerability (CVE-2026-20133) with a May 15 federal patching deadline. CISA has issued directives with supplemental hardening guidance and official remediation instructions.
Read more →Firewall Vulnerability Exploitation Surge: Fortinet, Palo Alto, Cisco Lead Attack Surface
Network edge appliances remain the highest-value initial access target for state-sponsored actors, with 2026 already seeing exploited zero-days in Cisco ASA, Fortinet FortiClient EMS, and Palo Alto PAN-OS. Organizations must assume internet-exposed firewalls without restricted captive portal access have had extended exposure windows.
Read more →NinjaOne Hits $5B Valuation with Gartner Leader Recognition and Audi Formula 1 Partnership
NinjaOne achieved $5 billion valuation and landed Gartner Leader quadrant on its first appearance in Q1 2026. The company signed a multi-year partnership with Audi Revolut's Formula 1 team and now manages endpoints globally for a major motorsport operation—a high-profile enterprise validation that challenges larger incumbents like Kaseya and ConnectWise.
Read more →ConnectWise 2026 MSP Threat Report: Identity Abuse Dominates Attack Surface
ConnectWise's 2026 MSP Threat Report reveals adversaries have abandoned novel exploit reliance in favor of exploiting trusted identities, legitimate system tools, and remote access infrastructure. MSPs must shift focus earlier in the attack lifecycle toward identity security, privileged access governance, and behavioral detection.
Read more →RMM Market 2026: NinjaOne, ConnectWise, Datto Lead; Architecture and Pricing Strategies Diverge
NinjaOne built unified capabilities natively on single cloud-native architecture while Kaseya (25.9% market share) and ConnectWise (25.4%) integrated acquisitions with inconsistent interfaces. NinjaOne's organic approach creates consistent user experience but requires different sales motion as it moves upmarket toward enterprise customers.
Read more →NinjaOne Launches Ninja Data Protection BDR Platform for MSPs
NinjaOne introduced Ninja Data Protection—a native backup and disaster recovery platform integrated with its core RMM on unified architecture. File and folder plus image backup with smart scheduling, block-level incremental technology, and AES 256-bit encryption position NinjaOne as a full-platform competitor against Kaseya, ConnectWise, and Datto.
Read more →This is what you get — every weekday, free.
Subscribers get the full “From the Floor” take with every issue — not just the news summary you just read.
Written from 12 years on the helpdesk floor. Always free.