Security Digest - May 24, 2026

Daily security intelligence briefing for infrastructure and endpoint management teams. Consolidated from authoritative research, vendor advisories, and community discussions.

• Generated (UTC): 2026-05-24 14:57:14 +00:00
• Lookback window: 7 days

🚀 Top Research & Advisories

• CrowdStrike detections on Nessus scan for MINIPLASMA_VULNERABLE - (Reddit r/sysadmin) FYI, we're seeing a ton of CrowdStrike detections this morning where it is killing a powershell execution from our Tenable Nessus scans. Issue seems to be around a new detection for the Miniplasma zero day from last week. Command Line: C:\Windows…

  Action: Review sensor guidance and deployment posture.

💻 AppSec

• Is there a tool that lets you automatically rotate all your ssh keys and k8s creds and whatever else with a click of a button? - (Reddit r/cybersecurity) Monitor developer tool vulnerabilities and supply chain risks.

🏗 Infrastructure

• WorkFolders Errors 9001,9002 & 9004 - (Reddit r/sysadmin) Review server hardening and AD security posture. Validate workstation security baseline and update compliance.

🛠 Infrastructure & Endpoint Control

• “Whatever works works” ahh setup - (Reddit r/Windows11) Validate workstation security baseline and update compliance.

• A “faster, cleaner replacement” for one of Windows 11’s most useful native tools is here - (Neowin) Validate workstation security baseline and update compliance.

• AI Infrastructure, Sandboxes, MCP Servers - What fresh new hell is this? - (Reddit r/sysadmin) Review Office update channel health and security baseline compliance.

• Browser extension testing. - (Reddit r/cybersecurity) Validate Chrome coverage; update managed package if needed.

• Capcha Code Malware - (Reddit r/cybersecurity) Review security controls and policy updates.

• Configure Windows 11 Pro for hybrid teams: remote desktop, dynamic lock, and policies - (Reddit r/Windows11) Validate workstation security baseline and update compliance.

• Google accidentally exposed details of unfixed Chromium flaw - (BleepingComputer) Validate Chrome coverage; update managed package if needed.

• I turned my Windows 11 into windows 10. It ended up really well. - (Reddit r/Windows11) Validate workstation security baseline and update compliance.

• IT Asset Management system recommendations? - (Reddit r/sysadmin) Review Office update channel health and security baseline compliance.

• M365 Hybrid with AD users default Login has changed to .onmicrosoft domain even though AD Proxy SMTP addresses are still correct - (Reddit r/sysadmin) Review Office update channel health and security baseline compliance.

• Microsoft Weekly: Removing ports from Xbox controllers and fixing the Copilot key - (Neowin) Validate workstation security baseline and update compliance.

• Microsoft’s new Copilot experiment restores the original sidebar UI on Windows 11, but it’s optional - (Reddit r/Windows11) Validate workstation security baseline and update compliance.

• MSTSC fails to login but Remote Desktop App works? - (Reddit r/sysadmin) Review security controls and policy updates. Validate workstation security baseline and update compliance.

• New Windows 11 preview builds bring File Explorer reliability improvements and more - (Neowin) Validate workstation security baseline and update compliance.

• Silly issue - (Reddit r/cybersecurity) Validate workstation security baseline and update compliance.

• Theoretical Design Concept for Post-Exploitation Browser Defense - (Reddit r/cybersecurity) Validate Chrome coverage; update managed package if needed.

• why is there a windows 7 restore option in my win 11 control panel. - (Reddit r/Windows11) Evaluate update rings and expedite actions if needed.

• Windows Tools, only learned about this program today. - (Reddit r/Windows11) Validate workstation security baseline and update compliance.

• WorkFolders Errors 9001,9002 & 9004 - (Reddit r/sysadmin) Review server hardening and AD security posture. Validate workstation security baseline and update compliance.

🔍 Quick Links (Watch Items)

• Top 10 Best Malware Sandbox Tools for Security Teams in 2026 - (CybersecurityNews)
• Podman and krun: is it pointless to harden quadlets? - (Reddit r/cybersecurity)
• WorkFolders Errors 9001,9002 & 9004 - (Reddit r/sysadmin)
• Theoretical Design Concept for Post-Exploitation Browser Defense - (Reddit r/cybersecurity)
• Is the CISSP still a reputable cert for getting jobs? - (Reddit r/cybersecurity)
• Browser extension testing. - (Reddit r/cybersecurity)
• AI Infrastructure, Sandboxes, MCP Servers - What fresh new hell is this? - (Reddit r/sysadmin)
• Am I underpaid or market? - (Reddit r/sysadmin)
• Resolving WinAppRuntime Deployment Failure (Error 0x80070032 / AppX Dependency Validation Block) - (Reddit r/sysadmin)
• Nginx-poolslip Vulnerability Enables DoS and Code Execution Attacks — Patch Now! - (CybersecurityNews)