RESEARCH
Part 1: For the Price of Coffee, You Can Avoid Buying a Hacker a Yacht
It always starts like a normal day. You grab coffee, drop your lunch in the fridge, skim through tickets and emails, maybe ...
Cyber Compliance
New California Audit Law Just Put Your MSP on the Hook. Here’s How to Turn It Into Recurring Revenue
If your clients process sensitive data, your MSP is now part of the legal conversation. On July 24, 2025, California finalized new rules that require businesses processing high-risk personal information to undergo annual, independent cybersecurity audits. This isn’t just for ...
Why You Might Want to Reconsider Your WISP for Every Single Client
Why This Isn’t Just About Checking a Compliance Box If you’re running an MSP, you’ve probably heard about Written Information Security Plans (WISPs). Maybe you’ve even created one—for certain clients, in certain industries, under certain regulations. But here’s the question: ...
The Dangerous Compliance Shortcut That Could Put Your MSP on the Hook for Negligence
Imagine sitting across from your best client. They tell you they’ve found a company that can build out their entire HIPAA compliance program in under three days. No heavy lifting. Fully automated. ...
Cyber Liability
Shadow IT Just Went Legal—and It's Coming for Your MRR
Earlier this year, a quiet courtroom in the Central District of California made noise the entire cybersecurity industry should be hearing: for the first time ever: a federal judge used the term “Shadow IT” in a legal ruling. And just ...
The Dangerous Assumptions You’re Making
Your clients are making assumptions about you right now. They assume you’ve got their security handled. They assume you’re gathering the evidence. They assume you’ve already written their incident response plan. But here’s the problem: they’re wrong. I was on ...
AI Is About to Cost You More Than You Think
Here’s the thing nobody wants to say out loud: Your employees are already using AI tools—whether you’ve approved them or not. And some of those tools? They’re fantastic productivity boosters. Others are ticking legal, compliance, and PR time bombs that ...
Insurance & MSP Liability
You’re Not Insured. You’re Just Hopeful.
So there I am, wrapping up a conference session—over 1,000 MSPs in the building—and one guy comes up clutching a fresh copy of Standardized like it’s a fire extinguisher in a server room. He’s nodding along, clearly rattled in all ...
Your MSP Carries More Risk Than a Magazine Stand—and That’s a Problem
Let’s talk about airport gift shops for a minute. You know the ones—tiny kiosks with $14 neck pillows, expired jerky, and three copies of Men’s Health no one’s ever going to read. Now, tell me—how much sensitive data do you ...
If You Don’t Own the Security Stack, You’ll Be Replaced
There’s a quiet shift happening in the cyber insurance world—and if you’re not talking to your clients about it, someone else is. That someone is their insurance provider. And they’re not just selling policies anymore. They’re selling cybersecurity solutions too. ...
More Articles
If You Missed the Security Chaos of the ‘90s, You’re in Luck!
We’re all seeing it. AI is changing how we approach nearly every part of business. It’s taking meeting notes, spitting out action items, and building chatbots to handle the flood of internal questions. The potential benefits for busy teams and ...
Shadow IT Just Went Legal—and It's Coming for Your MRR
Earlier this year, a quiet courtroom in the Central District of California made noise the entire cybersecurity industry should be hearing: for the first time ever: a federal judge used the term “Shadow IT” in a legal ruling. And just ...
New State Cyber Rules Are Coming—Will You Be Ready, or Be the One They Blame?
California. New York. Massachusetts. One by one, states are turning up the heat on cybersecurity regulations—and if you're not preparing your clients for what’s coming, you're not just behind. You're exposed. Last week I blogged about upcoming California rules requiring ...
Vibe Hacking: The AI Nightmare Your Clients Aren’t Ready For
Do you have a plan to save your clients from the next big cybercrime wave? Because it’s already here. And it has a name: vibe hacking. Sounds harmless, right? Like something your marketing intern came up with after too much ...
Your Clients Are Already Breaking the AI Rules You Never Wrote
Let’s get real. Your clients are already using AI. They’re excited about how much more “effective” it makes them. Which means they’re doing the one thing you begged them not to do: Uploading PII? Happening. Copy-pasting sensitive client records into ...
The Portal Problem: Are You Still Driving a Horse and Buggy?
I was talking to an MSP the other day who said, “The portal’s slow. I can’t ever find what I need.” So I asked him, “When’s the last time you logged in?” His answer? A few months ago. Holy cow. ...
New California Audit Law Just Put Your MSP on the Hook. Here’s How to Turn It Into Recurring Revenue
If your clients process sensitive data, your MSP is now part of the legal conversation. On July 24, 2025, California finalized new rules that require businesses processing high-risk personal information to undergo annual, independent cybersecurity audits. This isn’t just for ...
Your Copilot Might Be Working for the Other Side
Let’s play a game. Imagine you hire a new assistant. Bright. Helpful. Always eager to please. You ask it to pull a report. It delivers. You ask it to summarize last quarter’s numbers. Done in seconds. Now imagine that same ...
The Dangerous Assumptions You’re Making
Your clients are making assumptions about you right now. They assume you’ve got their security handled. They assume you’re gathering the evidence. They assume you’ve already written their incident response plan. But here’s the problem: they’re wrong. I was on ...
The Silent Killer in Your MSP: Ambiguity
You think you’re being clear. You told the client they needed MFA. You recommended better backups. You flagged that firewall. But when things go sideways—when data’s lost, insurance denies the claim, or the lawyers come knocking—they don’t remember your recommendations. ...
The #1 Role Every MSP Must Embrace Before a Competitor Replaces You
Your Clients Don’t Need Another IT Vendor. They Need a Cybersecurity Leader. If you’re still selling managed services like it’s 2015, you’re already losing. The MSP market has shifted. The stakes are higher. Clients aren’t asking how many tickets you ...
AI Is About to Cost You More Than You Think
Here’s the thing nobody wants to say out loud: Your employees are already using AI tools—whether you’ve approved them or not. And some of those tools? They’re fantastic productivity boosters. Others are ticking legal, compliance, and PR time bombs that ...
