RESEARCH
Part 1: Threat Actors Don't Pick You. You Just Happen to Be There.
There's this idea that floats around—usually in boardrooms and in forums—that advanced threat actors operate like surgeons. They pick a target, they plan it out, they execute. Super deliberate. Undeniably cinematic. It implies that a breach is something that happens ...
Cyber Compliance
Stop Getting Mad When Your Client Won’t Buy Compliance
You know the look. You explain how they need MFA, a risk assessment, documented policies, backups that actually restore… and your client stares back at you like you just recited the GDPR in ancient Greek. You leave the meeting frustrated. ...
“Fined Without a Breach?” Why the Wojeski $60,000 Penalty Matters—even if You Think You’re Small
You’ve seen two kinds of headlines after cyber incidents: (1) lawsuits and (2) regulatory enforcement. The recent $60,000 fine against Wojeski ...
New California Audit Law Just Put Your MSP on the Hook. Here’s How to Turn It Into Recurring Revenue
If your clients process sensitive data, your MSP is now part of the legal conversation. On July 24, 2025, California finalized new rules that require businesses processing high-risk personal information to undergo annual, independent cybersecurity audits. This isn’t just for ...
Cyber Liability
One Misconfigured AI Agent Can Impact Every Client You Manage
When One Action Hits Every Client, Governance Decides the Outcome Imagine a hypothetical that’s taught in law school every semester: A delivery driver abandons his route to join a drum circle for three days. On his way back, he causes ...
They Already Have an IT Department. Good. That’s Why You Should Call.
Last night I was at dinner with the CEO of an MSP. Good operator. Growing. Adding clients. Doing the work. We were walking around his town before dinner talking about the usual founder stuff. Processes. How to get people to ...
Agentic AI at the Edge: Opportunity, Autonomy & the Coming Legal Minefield
You’ve probably heard executives gush about autonomous AI agents, the shiny new productivity booster that can automate workflows faster than you can say “zero-trust.” But what they don’t hype is how agentic AI turns your cybersecurity playbook into an existential ...
Insurance & MSP Liability
The Clients You're Ignoring Are the Ones Who Will Sue You
I said something on stage at XChange last week that made a lot of people in the room uncomfortable. "Your smallest clients are your biggest risk." Not your enterprise accounts. Not the ones with complex environments and demanding SLAs. The ...
You’re Not Insured. You’re Just Hopeful.
So there I am, wrapping up a conference session—over 1,000 MSPs in the building—and one guy comes up clutching a fresh copy of Standardized like it’s a fire extinguisher in a server room. He’s nodding along, clearly rattled in all ...
Your MSP Carries More Risk Than a Magazine Stand—and That’s a Problem
Let’s talk about airport gift shops for a minute. You know the ones—tiny kiosks with $14 neck pillows, expired jerky, and three copies of Men’s Health no one’s ever going to read. Now, tell me—how much sensitive data do you ...
More Articles
Hackers Are Increasingly Targeting Mobile Devices
Here's a statistic you're not going to like. Based on research conducted by cybersecurity researchers at Proofpoint, there has been a staggering 500 percent increase in malware attacks against mobile devices during ...
Google Messages Users On Android Get New Features
Do you use Google Messages? If so, there's good news! In recent months, the company has taken steps to bridge the Windows and iOS ecosystems the Android ecosystems and the iOS ecosystems. ...
This Popular Fitbit Watch Has Been Recalled
Do you own an Ionic smartwatch? If you haven't heard yet, be advised that Fitbit has issued a voluntary recall of the devices produced between 2017 and 2020. It's also worth mentioning ...
These Medical Devices Are Vulnerable To Security Threats
Thanks to the fine folks at Palo Alto Networks we have a better view of the relative safety and security of network-capable medical devices. Unfortunately, the news is grim. Based on their ...
People Are Still Not Using Secure Passwords Despite Warnings
It's 2022 and after years of warning people repeatedly about the dangers of using the same old passwords and using the same password across multiple websites, you would think this would get ...
Network Security Breach Confirmed At Nvidia
Nvidia joined the seemingly unending parade of major corporations to fall victim of a hacking attack. Recently, a group of hackers calling itself "Lapsus$" began sharing details about the incident and the ...
Chip Makers Are Already Planning For WiFi7
We barely got to know Wi-Fi 6 but companies like Qualcomm are already making plans for the next generation of Wi-Fi technology. They are working on Wi-Fi 7 which is otherwise known ...
Android Users Need To Watch Out For Teabot Trojan
If you have smart devices in the Android ecosystem, there's a new threat to be aware of in the form of a malware strain called Teabot. This bit of malicious code is ...
Scammers Cost Americans Billions Of Dollars In 2021
The US Federal Trade Commission reports that Americans lost almost six billion dollars to fraud last year. The $5.8 billion total represented a catastrophic 70 percent increase compared to the losses reported ...
New Phishing Emails Target Citibank Account Holders
Are you a Citibank customer? If so, be aware that a group of scammers is specifically targeting Citibank account holders. The campaign is incredibly convincing, and the emails look just like official ...
Malware Hidden Inside Games Found In Microsoft Store
Security experts tell people all the time to never to download apps from anywhere other than official sources like the Microsoft Store, the Google Play Store, and the Apple App Store. It's ...
Employee Information Was Leaked At Cookware Company Meyer
Meyer Corporation is a California-based company and a giant in the cookware industry. Meyer is the latest victim in a seemingly never-ending parade of hacking attacks. The full extent of the attack ...
