“Audit your Windows BitLocker builds and AKS clusters immediately — both are actively exploitable; prioritize those patches before EOW.”
SQL Server 2016 Exits Standard Extended Support — ESU Payments Required After 14 July 2026
SQL Server 2016 moves beyond regular Extended Support and into the paid Extended Security Updates (ESU) phase after July 14, 2026. MSPs with clients still running SQL Server 2016 must either enrol in ESU, migrate to a supported version, or accept running unsupported software. Plan client conversations and migration or ESU budgets now — the deadline is three weeks away.
Read more →HTTP/2 'HPACK Bomb' CVE-2026-49160 — DoS Against IIS, NGINX, Apache; Workaround Available
A publicly disclosed denial-of-service vulnerability (CVE-2026-49160) in the HTTP/2 HPACK compression algorithm allows a single low-bandwidth attacker to exhaust server memory against IIS, NGINX, and Apache — Microsoft has addressed it by adding a MaxHeadersCount registry setting. NGINX and Apache patches are available now; an IIS patch is pending. MSPs should apply the MaxHeadersCount registry cap immediately on exposed IIS servers as a workaround.
Read more →Azure AKS CVE-2026-32193: Critical Container Escape RCE Patched — Cloud-Side Remediation Applied
June 2026 Patch Tuesday included a fix for CVE-2026-32193, a Critical RCE in Azure Kubernetes Service (CVSS 8.8) where a low-privileged attacker running a container with hostNetwork could break out to the AKS worker node. Microsoft has already proactively remediated this vulnerability within its cloud infrastructure, so no customer action is required for AKS-hosted workloads. MSPs should verify any self-managed Kubernetes deployments on Azure are also updated.
Read more →BitLocker Bypass Trio Patched — 'Nightmare Eclipse' Zero-Days YellowKey & Bitskrieg Now Fixed
Microsoft patched three BitLocker security feature bypass vulnerabilities (CVE-2026-45585 'YellowKey', CVE-2026-50507 'Bitskrieg', CVE-2026-45658) in the June 2026 update — all publicly disclosed before patches were available and rated 'Exploitation More Likely'. An attacker with physical device access can bypass BitLocker Device Encryption to access encrypted data. Patch and enforce physical security controls; no in-place workaround exists beyond applying the update.
Read more →SonicWall SMA1000 Series: SQL Injection & VPN Credential Enumeration Vulnerabilities Patched
SonicWall patched four vulnerabilities in the SMA1000 series firewalls including a high-severity SQL injection flaw (CVE-2026-4112) that could allow a read-only admin to escalate to primary admin rights. Three additional issues allow remote attackers to enumerate SSL VPN user credentials or bypass TOTP authentication. SonicWall reports no evidence of in-the-wild exploitation but urges immediate upgrade of all SMA1000 appliances.
Read more →Caylent Launches Agentic Cloud Operations for AWS-Focused MSPs — 40% MTTR Reduction Claimed
Caylent has announced its 'Accelerate' agentic cloud operations platform (June 17, 2026), targeting AWS-focused MSPs with AI agents that automate incident triage, cost optimisation, and backlog management. The company claims agents can accelerate 70% of remediation work and reduce mean time to resolution by 40%, with AWS-certified engineers retaining oversight and approval rights. This positions agentic AI as a managed-outcome model, not just a feature add-on, for MSP cloud delivery.
Read more →This is what you get — every weekday, free.
Subscribers get the full “From the Floor” take with every issue — not just the news summary you just read.
Written from 12 years on the helpdesk floor. Always free.