RESEARCH
Threat Thursday: May 21st, 2026
Welcome to Threat Thursday, Galactic’s weekly threat intelligence roundup. Every Thursday, we cover the cybersecurity stories that matter most for protecting organizations from emerging threats. Each item is broken down into what happened, what it could mean for your organization, ...
Cyber Compliance
Stop Getting Mad When Your Client Won’t Buy Compliance
You know the look. You explain how they need MFA, a risk assessment, documented policies, backups that actually restore… and your client stares back at you like you just recited the GDPR in ancient Greek. You leave the meeting frustrated. ...
“Fined Without a Breach?” Why the Wojeski $60,000 Penalty Matters—even if You Think You’re Small
You’ve seen two kinds of headlines after cyber incidents: (1) lawsuits and (2) regulatory enforcement. The recent $60,000 fine against Wojeski ...
New California Audit Law Just Put Your MSP on the Hook. Here’s How to Turn It Into Recurring Revenue
If your clients process sensitive data, your MSP is now part of the legal conversation. On July 24, 2025, California finalized new rules that require businesses processing high-risk personal information to undergo annual, independent cybersecurity audits. This isn’t just for ...
Cyber Liability
One Misconfigured AI Agent Can Impact Every Client You Manage
When One Action Hits Every Client, Governance Decides the Outcome Imagine a hypothetical that’s taught in law school every semester: A delivery driver abandons his route to join a drum circle for three days. On his way back, he causes ...
They Already Have an IT Department. Good. That’s Why You Should Call.
Last night I was at dinner with the CEO of an MSP. Good operator. Growing. Adding clients. Doing the work. We were walking around his town before dinner talking about the usual founder stuff. Processes. How to get people to ...
Agentic AI at the Edge: Opportunity, Autonomy & the Coming Legal Minefield
You’ve probably heard executives gush about autonomous AI agents, the shiny new productivity booster that can automate workflows faster than you can say “zero-trust.” But what they don’t hype is how agentic AI turns your cybersecurity playbook into an existential ...
Insurance & MSP Liability
The Clients You're Ignoring Are the Ones Who Will Sue You
I said something on stage at XChange last week that made a lot of people in the room uncomfortable. "Your smallest clients are your biggest risk." Not your enterprise accounts. Not the ones with complex environments and demanding SLAs. The ...
You’re Not Insured. You’re Just Hopeful.
So there I am, wrapping up a conference session—over 1,000 MSPs in the building—and one guy comes up clutching a fresh copy of Standardized like it’s a fire extinguisher in a server room. He’s nodding along, clearly rattled in all ...
Your MSP Carries More Risk Than a Magazine Stand—and That’s a Problem
Let’s talk about airport gift shops for a minute. You know the ones—tiny kiosks with $14 neck pillows, expired jerky, and three copies of Men’s Health no one’s ever going to read. Now, tell me—how much sensitive data do you ...
More Articles
Watch Out for Egregor Ransomware Now Hitting The Scene
A new ransomware strain burst onto the scene in September of this year (2020). Dubbed 'Egregor' by the research team at Digital Shadows who discovered it, it has already claimed more than ...
New Phone Malware Signs You Up For Expensive Subscriptions
Researchers at Check Point have recently discovered a new malware threat that targets mobile device users. Dubbed WAPDropper, this is a multi-function bit of code that's capable of being outfitted with a ...
Some Spotify Users Reporting Possible Hacking Of Their Account
Are you a Spotify user? If so, you've got plenty of company. It's one of the shining success stories on the web, and has grown to become one of the most popular ...
The 2014 Home Depot Data Breach Finally Reaches Settlement
Unless you're a regular Home Depot shopper, you may have missed the fact that back in 2014, the company was the victim of a successful hacking attack that saw malware installed on ...
New Scam Lures Victims With Promise Of Federal Assistance
If you're a US citizen, scammers have found a new way to make money at your expense, using the global pandemic as a 'hook.' Since the start of the pandemic, there have been ...
Hackers Using Minecraft Modpacks To Distribute Malware On Android Devices
If you're an avid gamer, you're almost certainly at least passingly familiar with Minecraft, and you may be an active player. Despite its blocky, simplistic graphics, it's the most popular game of ...
Transparency Coming To Chrome Extension Data Collection
If you employ a number of Chrome web extensions to enhance your browsing experience, be aware that change is afoot. Google recently announced that as of early next year, the company is ...
People Are Paying Ransomware Attackers In Large Numbers In 2020
Hackers have increasingly gravitated to ransomware attacks in 2020, as being one of the best and most reliable paths to a payday. That brings to mind an interesting question though. Naturally, the ...
Passwords In 2020 Are Easy To Guess And Not Secure
It's time once again for a survey of the worst passwords of 2020, brought to you by Norpass and associates. The company has been analyzing passwords retrieved from the Dark Web to ...
Pluto TV User Information Is Being Shared Online By Hacker
Are you a Pluto.tv user? If so, you're not alone. The internet television station boasts an impressive user base of nearly thirty million users who enjoy a wide range of free TV ...
New Version Of Jupyter Malware Spotted In The Wild
Researchers from cybersecurity company Morphisec have recently discovered a new strain of malware they believe has been in the wild of the internet since at least May of this year (2020). Dubbed ...
Latest Version Of Chrome Is Faster And More Secure
If you're a diehard Chrome browser user, be aware that as of November 17th, 2020, Chrome 87 has now been ported to the Stable desktop channel, and it's an upgrade well worth ...
