RESEARCH
Threat Thursday: May 14th, 2026
Welcome to Threat Thursday, Galactic’s weekly threat intelligence roundup. Every Thursday, we cover the cybersecurity stories that matter most for protecting organizations from emerging threats. Each item is broken down into what happened, what it could mean for your organization, ...
Cyber Compliance
Stop Getting Mad When Your Client Won’t Buy Compliance
You know the look. You explain how they need MFA, a risk assessment, documented policies, backups that actually restore… and your client stares back at you like you just recited the GDPR in ancient Greek. You leave the meeting frustrated. ...
“Fined Without a Breach?” Why the Wojeski $60,000 Penalty Matters—even if You Think You’re Small
You’ve seen two kinds of headlines after cyber incidents: (1) lawsuits and (2) regulatory enforcement. The recent $60,000 fine against Wojeski ...
New California Audit Law Just Put Your MSP on the Hook. Here’s How to Turn It Into Recurring Revenue
If your clients process sensitive data, your MSP is now part of the legal conversation. On July 24, 2025, California finalized new rules that require businesses processing high-risk personal information to undergo annual, independent cybersecurity audits. This isn’t just for ...
Cyber Liability
One Misconfigured AI Agent Can Impact Every Client You Manage
When One Action Hits Every Client, Governance Decides the Outcome Imagine a hypothetical that’s taught in law school every semester: A delivery driver abandons his route to join a drum circle for three days. On his way back, he causes ...
They Already Have an IT Department. Good. That’s Why You Should Call.
Last night I was at dinner with the CEO of an MSP. Good operator. Growing. Adding clients. Doing the work. We were walking around his town before dinner talking about the usual founder stuff. Processes. How to get people to ...
Agentic AI at the Edge: Opportunity, Autonomy & the Coming Legal Minefield
You’ve probably heard executives gush about autonomous AI agents, the shiny new productivity booster that can automate workflows faster than you can say “zero-trust.” But what they don’t hype is how agentic AI turns your cybersecurity playbook into an existential ...
Insurance & MSP Liability
The Clients You're Ignoring Are the Ones Who Will Sue You
I said something on stage at XChange last week that made a lot of people in the room uncomfortable. "Your smallest clients are your biggest risk." Not your enterprise accounts. Not the ones with complex environments and demanding SLAs. The ...
You’re Not Insured. You’re Just Hopeful.
So there I am, wrapping up a conference session—over 1,000 MSPs in the building—and one guy comes up clutching a fresh copy of Standardized like it’s a fire extinguisher in a server room. He’s nodding along, clearly rattled in all ...
Your MSP Carries More Risk Than a Magazine Stand—and That’s a Problem
Let’s talk about airport gift shops for a minute. You know the ones—tiny kiosks with $14 neck pillows, expired jerky, and three copies of Men’s Health no one’s ever going to read. Now, tell me—how much sensitive data do you ...
More Articles
Firefox To Follow Chrome in Backspace Keyboard Functionality Change
In July 2016, Google Chrome blocked the use of the backspace key to navigate to a previous page in their Chrome 52 release. This was because of reports that it brings about ...
Even Big Companies Like Nissan Get Hacked
Even the largest companies in the world can't claim immunity to hacking, data breaches and momentary lapses in judgment. Nissan is a classic case in point. Recently, due to a careless oversight, ...
Adobe Flash Is Done And Flash Content Is Being Blocked
Adobe has finally done it, as promised. For more than a year, the company has been slow-walking their iconic Adobe Flash Player to its eventual doom. As of December 31st, 2020, Adobe ...
This New Malware Has A Unique Email Offer
The Quaverse Remote Access Trojan--affectionately dubbed QRat--has been with us since at least 2015. It's a good piece of malware because it's notoriously difficult to detect and it provides high value information ...
New PayPal Phishing Attempts Are After Your Account Info
Hackers and scammers have hit the ground running in 2021, launching an extensive new phishing campaign that targets the legions of PayPal users around the world. The campaign is being run on ...
Brand New Ransomware Found On The Internet
Hackers around the world didn't waste any time. New Year's celebrations have barely ended, and already, we have our first reports of a new malware strain to help ring in 2021. Dubbed ...
Big Changes Coming To Microsoft Outlook In Coming Years
Microsoft has been moving toward a unified "single version" of Outlook that would offer a seamless user experience across all platforms and devices. Unfortunately, thus far, that objective has remained elusive. In ...
Hacker Attacks On Healthcare Industry Are On The Rise
In the early days of the pandemic, several major groups of hackers pledged that their activities would not be aimed at institutions that were engaged in vaccine research. There was at least ...
Adobe Flash Has Reached End of Life Status
Is your company's website built around Adobe's aging Flash Player? If so, be aware that you are officially on your own. Flash reached its EOL (End of Life) as of January 1st ...
Weak Passwords Are Making Easy Work For This New Malware
There's a new worm making the rounds on Windows and Linux-based servers that you should be aware of. This nasty bit of code has been spreading rapidly, using simple brute-force methods to ...
Security Incident Exposes Some T-Mobile Customer Data
In 2020, there have been a number of high-profile data breaches, and as we move closer to the end of the year, we have yet another to report. This time, cellular carrier ...
Be Careful Your Home Security Cameras Can Be Hacked
Various hackers around the world have found a new hobby. Recently, there has been a rise in "Swatting Attacks", which have seen hackers take advantage of the notoriously weak or nonexistent security ...
