🔴 Ivanti has another actively exploited zero-day. This is the 33rd time CISA has flagged one of their vulnerabilities

If you manage any Ivanti Endpoint Manager Mobile deployments, check them this morning.

Ivanti disclosed CVE-2026-6973 on Thursday. It’s a high-severity flaw in EPMM that allows an authenticated admin-level attacker to execute arbitrary code remotely. CISA added it to the Known Exploited Vulnerabilities catalog the same day and gave federal agencies until yesterday to patch. BleepingComputer

Ivanti patched four additional high-severity EPMM vulnerabilities at the same time, including one that allows unauthenticated remote code execution, and another that lets an attacker impersonate a registered Sentry host to obtain valid certificates. Those four have not yet been confirmed as exploited.

This is the 33rd Ivanti vulnerability CISA has confirmed as exploited in the wild. Patch to EPMM versions 12.6.1.1, 12.7.0.1, or 12.8.0.1. And if you haven’t rotated credentials since January’s Ivanti breach, do that too. It significantly reduces the risk from this specific flaw.

🟡 Patch Tuesday is tomorrow (after last month's domain controller disaster, you'll want to be ready)

Microsoft’s May Patch Tuesday lands tomorrow.

No official preview yet of what’s coming, but given April’s record 167 vulnerabilities and the out-of-band emergency fix for domain controller reboot loops that followed, it’s worth having your patch management process off the bench, warmed up and ready to play. BleepingComputer

We’ll cover anything significant in tomorrow’s MSP Minute.

🟢 The Register got a new website last week. Its readers have thoughts… 200 of them

On Thursday we told you The Register had launched its first redesign in over 20 years. What we didn’t know then was how its readers would react.

The answer is: at considerable length. The forum thread now runs to over 200 comments from IT professionals methodically cataloguing every grievance with surgical precision.

Highlights include one reader describing the new design as having a “Homer Simpson’s Website ‘Look what I did, Marge!’ effect.” Another noted approvingly that at least RSS was kept, because “you obviously know your audience.” A third spent three paragraphs on the masthead width. The Register Forums

Honestly, it’s the most relatable thing on the internet this morning. Nobody reviews a UI change like an IT professional who didn’t ask for it 😃

Right, that’s your lot for today. Have a fun day Monday.