“Make sure your team knows the web app fallback for every core M365 service. Teams, Outlook, SharePoint — browser versions for all of them. Brief your L1s before the next outage, not during it.”
Microsoft 365 Global Outage: Exchange & Teams Down Monday Morning
Microsoft experienced service disruption affecting Teams and Exchange Online, leaving users globally unable to access collaboration and communication tools. Company determined a "recent change" caused the issue and began reverting it around 7 a.m. EST.
Read more →Classic Outlook Crashes When Teams Meeting Add-in Enabled
Users with Classic Outlook and Teams Meeting Add-in enabled are impacted by previous build versions; Microsoft recommends ensuring latest Outlook version is enabled to mitigate impact. Workaround: disable Teams Meeting Add-in or perform Online Repair of Office/update Outlook to latest version.
Read more →CVE-2026-42897: Microsoft Exchange XSS Active Exploitation Confirmed
Microsoft confirmed active exploitation of CVE-2026-42897, a Cross-Site Scripting vulnerability in Microsoft Exchange Server with CVSS 8.1. CISA KEV Catalog lists this as known exploited; immediate patching required for exposed Exchange servers.
Read more →Microsoft May 2026 Patch Tuesday: 130 CVEs Including 30 Critical Vulnerabilities
Microsoft addressed 130 vulnerabilities in May 2026 update, including 30 critical vulnerabilities and no publicly disclosed zero-days for first time since June 2024. CVE-2026-41089: Windows Netlogon RCE (CVSS 9.8) allows unauthenticated remote attackers to execute code via stack-based buffer overflow with no user interaction required.
Read more →CVE-2026-41103: Microsoft SSO Plugin RCE Critical Flaw Exploited
CVE-2026-41103 affects Microsoft Single-Sign-On (SSO) Plugin for Jira & Confluence with CVSS 9.1 and critical severity, assessed as "Exploitation More Likely." Unauthorized attackers can exploit via crafted login response to sign in with forged identity and bypass Microsoft Entra ID authentication.
Read more →Ivanti EPMM Remote Code Execution: Requires Admin Access to Trigger
Ivanti Endpoint Manager Mobile (EPMM) contains improper input validation allowing remotely authenticated user with administrative access to achieve remote code execution. Workaround: restrict User-ID Authentication Portal access to trusted zones or disable if not required.
Read more →Fortinet Publishes 11 Advisories May 16: Two Critical Code Execution Flaws
Fortinet published 11 advisories on Patch Tuesday with two critical-severity code execution security defects. Applies to FortiOS and related appliances; review Fortinet PSIRT advisories for affected versions and recommended firmware updates.
Read more →SonicWall SMA1000 SQL Injection CVE-2026-4112 Patches Released
SonicWall patched four vulnerabilities in SMA1000 firewalls including high-severity SQL injection CVE-2026-4112, allowing read-only admin to obtain primary admin rights. Other flaws enable credential enumeration and TOTP bypass; no evidence of wild exploitation but immediate patching urged.
Read more →Palo Alto Networks CVE-2026-0234: Cortex XSOAR Teams Integration Cryptographic Flaw
CVE-2026-0234 is critical improper cryptographic signature verification in Cortex XSOAR/XSIAM Teams integration, allowing attackers to access and tamper with protected resources. Update Cortex platforms to patched versions immediately.
Read more →NinjaOne Reaches $5B Valuation; Gartner Leader & Formula 1 Partnership
NinjaOne valued at $5 billion with $500M+ annual recurring revenue; Q1 2026 included Gartner Leader quadrant entry for Endpoint Management, Audi Formula 1 partnership, and two new product launches. Platform integrates endpoint, patch, remote access, backup, MDM, asset and vulnerability management natively on single architecture.
Read more →RMM Market 2026: NinjaOne, ConnectWise, Datto Lead; Architectural Divergence
Kaseya holds 25.9% RMM market share built via acquisition (Datto for $6.2B, Unitrends, IT Glue); ConnectWise at 25.4% followed similar playbook. NinjaOne built natively on single cloud-native architecture; all capabilities share same data model and console, creating operational consistency competitors lack.
Read more →2026 RMM Pricing Models Shift: Per-Tech vs Per-Endpoint vs Tiered
Enterprise RMM solutions like ConnectWise Automate incur $2,000-$20,000+ implementation costs; platforms like NinjaOne and Atera offer free onboarding. Atera pioneered per-technician pricing model ($129-249/month); per-endpoint and tiered models remain standard for Datto, ConnectWise, Kaseya with custom quotes.
Read more →ConnectWise Launches Modern Threat Protection with 15-Min SLA Guarantee
ConnectWise launched unified AI-powered threat protection enabling MSPs to reduce tool sprawl and accelerate response with industry-first 15-minute Service Level Agreement (SLA). New solution addresses MSP security visibility and coordination gaps.
Read more →This is what you get — every weekday, free.
Subscribers get the full “From the Floor” take with every issue — not just the news summary you just read.
Written from 12 years on the helpdesk floor. Always free.