Security Digest - May 17, 2026

Daily security intelligence briefing for infrastructure and endpoint management teams. Consolidated from authoritative research, vendor advisories, and community discussions.

• Generated (UTC): 2026-05-17 14:50:51 +00:00
• Lookback window: 7 days

🚀 Top Research & Advisories

• No high-priority security research detected in this window.

  💻 AppSec

• Career advice needed - 6 YoE - Mid-career infra/cloud engineer feeling stuck between traditional ops and modern DevOps — need realistic direction - (Reddit r/sysadmin) Monitor developer tool vulnerabilities and supply chain risks.

🏗 Infrastructure

• Completed a full VMware elimination in 24— happy to share what we learned - (Reddit r/sysadmin) Review server hardening and AD security posture.

• I’m finishing the UEFI Certificate update - sharing my experience - (Reddit r/sysadmin) Review encryption policy and remediation gaps. Review server hardening and AD security posture.

• User onboarding with IAM - (Reddit r/sysadmin) Review server hardening and AD security posture.

• X710-T2L (retail) negotiates only at 1 Gbps on TP-Link SX1008 - Supermicro X710 AOC works at 10 Gbps - (Reddit r/sysadmin) Review server hardening and AD security posture.

🛡 Security Ops

• Cyber Essentials v3.3 / Danzell (UK) and separate admin account requirement - (Reddit r/sysadmin) Review CA/MFA settings for tightening opportunities.

🛠 Infrastructure & Endpoint Control

• Edge users are begging Microsoft to return these two features - (Neowin) Validate Edge/WebView2 coverage; refresh managed package.

• Excel users are raging over Microsoft’s unremovable Copilot button inside their sheets - (Neowin) Review Office update channel health and security baseline compliance.

• How long does it take you to diagnose a network issue when your monitoring tool isn’t showing you why? - (Reddit r/sysadmin) Validate Edge/WebView2 coverage; refresh managed package.

• I made Windows 11 look like 7 - (Reddit r/Windows11) Validate workstation security baseline and update compliance.

• I’m finishing the UEFI Certificate update - sharing my experience - (Reddit r/sysadmin) Review encryption policy and remediation gaps. Review server hardening and AD security posture.

• Keep getting hacked - (Reddit r/cybersecurity) Review Office update channel health and security baseline compliance. Review security controls and policy updates.

• Microsoft backpedals: Edge to stop loading passwords into memory - (BleepingComputer) Validate Edge/WebView2 coverage; refresh managed package.

• Microsoft commits to native UI for Windows 11 as users push back against web app slop - (Reddit r/Windows11) Validate workstation security baseline and update compliance.

• Microsoft confirms more Windows 11 Start menu customization and improvements are on the way - (Neowin) Validate workstation security baseline and update compliance.

• Microsoft Exchange, Windows 11 hacked on second day of Pwn2Own - (BleepingComputer) Validate workstation security baseline and update compliance.

• Microsoft Exchange, Windows 11, and Cursor Zero-Days Exploited on Pwn2Own Day 2 - (CybersecurityNews) Validate workstation security baseline and update compliance.

• Microsoft released Windows 11 KB5089593, KB5087594 updates for OS recovery - (Neowin) Validate workstation security baseline and update compliance.

• Microsoft Weekly: Long-requested features for Windows 11, leaked gamepads and leaked games - (Neowin) Validate workstation security baseline and update compliance.

• Regarding Windows K2, and the community’s peculiar response to it - (Reddit r/Windows11) Validate workstation security baseline and update compliance.

• TIP: Return useful functionality to Win11 Snipping Tool - (Reddit r/Windows11) Review Office update channel health and security baseline compliance. Validate workstation security baseline and update compliance.

• Why Windows 11 cumulative updates became so huge in file size? 5.2 GB compared to just 800 MB for the latest Windows 10 update. - (Reddit r/Windows11) Evaluate update rings and expedite actions if needed. Validate workstation security baseline and update compliance.

🩹 Patch Tuesday & Update Experience

• Microsoft released Windows 11 KB5089593, KB5087594 updates for OS recovery - (Neowin) New dynamic updates for Windows 11 versions 26H1, 25H2, and 24H2, as well as Windows 10, have been released. Read more…

🔍 Quick Links (Watch Items)

• Transition from traditional penetration testing into AI security - (Reddit r/cybersecurity)
• Seeking advice on next career steps - (Reddit r/cybersecurity)
• Alert Fatigue - (Reddit r/cybersecurity)
• A clueless teenager 💔 - (Reddit r/cybersecurity)
• Cyber Essentials v3.3 / Danzell (UK) and separate admin account requirement - (Reddit r/sysadmin)
• Am I overthinking Claude Code security or is this actually a risk? - (Reddit r/cybersecurity)
• Production ZFS storage driver for XCP-ng - source available, 83/91 E2E tests, CBT for backup integration - (Reddit r/sysadmin)
• Grafana Labs Security Breach – Hackers Access GitHub and Download Codebase - (CybersecurityNews)
• Career advice needed - 6 YoE - Mid-career infra/cloud engineer feeling stuck between traditional ops and modern DevOps — need realistic direction - (Reddit r/sysadmin)
• What is session level DLP and is it actually useful for GenAI data leaks? - (Reddit r/sysadmin)