“On your next ticket today — before you do anything — write down in one sentence what the client is actually asking for. If you can't do that clearly, you're not ready to start working it.”
CVE-2026-42945 (NGINX Rift): Critical RCE in nginx rewrite module exploitable end-to-end
A heap buffer overflow in ngx_http_rewrite_module (present since 2008) allows unauthenticated attackers to execute code via crafted HTTP requests. When combined with Linux LPE vulnerabilities CVE-2026-31431 or CVE-2026-43284, creates reliable internet-to-root exploit chains affecting WordPress and major government sites. Urgent: Upgrade nginx to 1.30.1/1.31.0 or replace unnamed captures with named captures in rewrite rules.
Read more →CVE-2026-42898: Microsoft Dynamics 365 On-Premises RCE (CVSS 9.9) with scope change
Authenticated code injection in Dynamics 365 on-premises allows remote attackers to execute arbitrary code with scope change, compromising resources beyond the vulnerable component. Critical for on-premises deployments; patches available but require immediate testing and deployment.
Read more →Drupal Core 'Highly Critical' RCE Vulnerability Patched (May 21, 2026)
Drupal released emergency security updates for a highly critical vulnerability in Drupal Core enabling remote code execution, privilege escalation, or information disclosure. Organizations running Drupal must patch immediately.
Read more →Anthropic Claude Code AI: Critical network sandbox bypass disclosed (May 21, 2026)
Anthropic's Claude Code AI coding assistant harbored a critical sandbox bypass vulnerability for over five months, allowing attackers to exfiltrate credentials, source code, and environment variables. Vulnerability has been patched.
Read more →NinjaOne Achieves $5B Valuation, Gartner Leader Status, Formula 1 Partnership
NinjaOne (formerly NinjaRMM) reached $5 billion valuation in early 2026 with $500M+ ARR, debuted in Gartner Magic Quadrant for Endpoint Management, and became official MDM/endpoint partner for Audi's Formula 1 team entry. Platform consolidates endpoint management, patch, remote access, backup, and MDM on single cloud-native architecture.
Read more →ConnectWise Launches Modern Threat Protection with 15-Minute SLA Guarantee
ConnectWise released unified, AI-powered threat protection enabling MSPs to reduce tool sprawl, improve visibility, and accelerate response with industry-first 15-minute SLA commitment. Product designed to address identity abuse and trusted access exploitation patterns documented in 2026 MSP Threat Report.
Read more →This is what you get — every weekday, free.
Subscribers get the full “From the Floor” take with every issue — not just the news summary you just read.
Written from 12 years on the helpdesk floor. Always free.