RESEARCH
Threat Thursday: May 21st, 2026
Welcome to Threat Thursday, Galactic’s weekly threat intelligence roundup. Every Thursday, we cover the cybersecurity stories that matter most for protecting organizations from emerging threats. Each item is broken down into what happened, what it could mean for your organization, ...
Cyber Compliance
Stop Getting Mad When Your Client Won’t Buy Compliance
You know the look. You explain how they need MFA, a risk assessment, documented policies, backups that actually restore… and your client stares back at you like you just recited the GDPR in ancient Greek. You leave the meeting frustrated. ...
“Fined Without a Breach?” Why the Wojeski $60,000 Penalty Matters—even if You Think You’re Small
You’ve seen two kinds of headlines after cyber incidents: (1) lawsuits and (2) regulatory enforcement. The recent $60,000 fine against Wojeski ...
New California Audit Law Just Put Your MSP on the Hook. Here’s How to Turn It Into Recurring Revenue
If your clients process sensitive data, your MSP is now part of the legal conversation. On July 24, 2025, California finalized new rules that require businesses processing high-risk personal information to undergo annual, independent cybersecurity audits. This isn’t just for ...
Cyber Liability
One Misconfigured AI Agent Can Impact Every Client You Manage
When One Action Hits Every Client, Governance Decides the Outcome Imagine a hypothetical that’s taught in law school every semester: A delivery driver abandons his route to join a drum circle for three days. On his way back, he causes ...
They Already Have an IT Department. Good. That’s Why You Should Call.
Last night I was at dinner with the CEO of an MSP. Good operator. Growing. Adding clients. Doing the work. We were walking around his town before dinner talking about the usual founder stuff. Processes. How to get people to ...
Agentic AI at the Edge: Opportunity, Autonomy & the Coming Legal Minefield
You’ve probably heard executives gush about autonomous AI agents, the shiny new productivity booster that can automate workflows faster than you can say “zero-trust.” But what they don’t hype is how agentic AI turns your cybersecurity playbook into an existential ...
Insurance & MSP Liability
The Clients You're Ignoring Are the Ones Who Will Sue You
I said something on stage at XChange last week that made a lot of people in the room uncomfortable. "Your smallest clients are your biggest risk." Not your enterprise accounts. Not the ones with complex environments and demanding SLAs. The ...
You’re Not Insured. You’re Just Hopeful.
So there I am, wrapping up a conference session—over 1,000 MSPs in the building—and one guy comes up clutching a fresh copy of Standardized like it’s a fire extinguisher in a server room. He’s nodding along, clearly rattled in all ...
Your MSP Carries More Risk Than a Magazine Stand—and That’s a Problem
Let’s talk about airport gift shops for a minute. You know the ones—tiny kiosks with $14 neck pillows, expired jerky, and three copies of Men’s Health no one’s ever going to read. Now, tell me—how much sensitive data do you ...
More Articles
Free Unlimited Storage Ending For Google Photos
For several years now, most of the big tech companies have been using the lure of free to grow their respective user bases. Free unlimited data on phone plans. Free, unlimited storage ...
Flash Player Will No Longer Work On Firefox In January
File this away under the least surprising announcement ever. Actually, it's not so much an announcement as a reminder that on January 26, 2021, when Mozilla releases Firefox 85, the option to ...
Discord Being Used By Hacker To Distribute Malware
If you're a gamer, and you make frequent use of Discord, there's a new threat you should be aware of. Recently, hackers have been seen using a malware strain called 'TroubleGrabber' on ...
Windows 10 Displays Going Dark Issue Fixed By Microsoft
If you run Windows 10, version 2004, you may have noticed some unusual shenanigans going on where your system's monitor is concerned. If you're using a tablet or laptop, with a display ...
Older Android Phones May Have Site Loading Issues In 2021
By now, just about everyone is aware of the importance SSL certificates play in keeping data away from prying eyes on the web. After some scares in recent years, it has thankfully ...
Recent iOS Update Addresses A Number of Security Vulnerabilities
If you use an Apple device running iOS, then you'll want to update to the latest version (14.2) immediately. In the latest update, Apple has patched a trio of 'Zero Day Vulnerabilities' ...
Lenscrafters And Other Luxottica Eyewear Patients Had Information Breached
Luxottica is the latest company to fall victim to relentless hackers. Even if you're not familiar with the name, if you wear glasses or contacts, you might have dealings with the company ...
Yahoo Making Email Forwarding Rules Changes In January
Do you have a free Yahoo email account? If so, be advised that beginning January 1, 2021, you will lose the ability to set up automatic email forwarding from that account, and ...
Ecommerce Platform X-Cart Hit By Ransomware Caused Outage
Do you sell goods and services directly from your company's website? Do you use X-Cart to do it? If you answered yes to both of those questions, you may have had some ...
Hackers Stole User Information From Popular Gold Dealer
Do you own gold? If so, and if you purchased it online, then odds are good that you bought it from JM Bullion, which is one of the largest precious metal retailers ...
New Phishing Attack Uses Unique Method To Avoid Security
Hackers are always looking for a new angle, and recently, they've found a particularly good one. Image recognition software is becoming increasingly sophisticated. So if hackers are interested in building a fake ...
Toy Company Mattel Was Latest Victim Of Ransomware Attack
When you were growing up, your parents probably bought you all sorts of toys made by Mattel. From Hotwheels to Barbie to the full line of Toy Story toys and more, Mattel ...
