ENKVA #005 — Netlogon and DNS Client RCEs lead May Patch Tuesday
Microsoft shipped the May 2026 security update on May 12 with 137 Microsoft CVEs. Two of them are unauthenticated network remote-code-execution flaws in...
ENKVA #004 — cPanel auth bypass on KEV with ransomware flag
CISA added CVE-2026-41940 to the Known Exploited Vulnerabilities catalog on April 30 with the knownRansomwareCampaignUse: Known flag and a remediation due...
ENKVA #003 — RMM tools back on the KEV catalog
security-vulnerabilities-01-2025" used_in: "lead — SimpleHelp advisory, fixed versions 5.5.8 / 5.4.10 / 5.3.9" - url:...
ENKVA #002 — Threat actors impersonate IT support via Teams external access, use Quick Assist to install RMM tools and exfiltrate data — restrict Quick Assist now
If your end users receive a Teams message from someone claiming to be IT support, they have no reliable way to distinguish your real helpdesk from an...
ENKVA #001 — Microsoft's April Patch Tuesday shipped 165 CVEs plus 82 third-party advisories. Five need attention this week.
Microsoft's April 2026 security release landed on the 14th with 165 Microsoft CVEs plus 82 third-party advisories bundled under the same release banner — 247...