RESEARCH
Threat Thursday: June 4th, 2026
Welcome to Threat Thursday, Galactic's weekly threat intelligence roundup. This week's stories have a clear pattern: attackers didn't find obscure entry points or novel techniques but instead went after the things you were already using and already trusting. As always, ...
Communicating Risk
Building Trust in Executive Relationships: Lessons from King Lear
A Framework for Establishing the Kind of Trust that Survives Budget Season Imagine the curtain going up and a group of players act out the opening scenes of Shakespeare's King Lear, just for you. An aging king sits in his ...
Your Jokes Were Funny. They Still Didn't Renew.
How MSPs Build the Kind of Client Rapport That Survives a Budget Review You walked out of the meeting feeling good. The handshake was firm, the small talk landed, and you even got a laugh with the printer joke. You ...
Value That Converts: Why Your vCSO Pitch Keeps Getting Pushed to IT
You walked out of that meeting feeling like a closer. Your credentials were on point. You covered the whole stack: EDR, SIEM, MDR, quarterly risk assessments, tabletop exercises, NIST alignment. Your vCSO offering was solid. You even had a phased ...
Dark Web Monitoring & Threat Intelligence
Part 2: Congratulations, Your Password Manager Made the News (Again)
If you caught Part 1 last week, you know the shape of what TeamPCP has been running since December 2024: one supply chain campaign, still expanding, with credentials stolen over a year ago still being spent today. Part 2 is ...
Part 1: Congratulations, Your Password Manager Made the News (Again)
You've probably seen the headlines. Bitwarden compromised. Trivy compromised. Checkmarx tools compromised. A handful of other developer tools before that. Each one got its own news cycle, its own advisory, its own "here's what to do if you're affected" post. ...
Your OSINT Reality Check: Here’s What an Attacker Is Finding in 30 Minutes or Less
Today’s connected, AI-driven digital ecosystem has made it easier than ever to build a professional brand, network with peers, and share ideas with a wider audience. It’s opened doors for businesses that simply didn't exist before: new customers, new partnerships, ...
Human Layer Security
The Deepfake Was Convincing. So Was My Backpack.
Why Social Engineering Still Works, Why AI is Making it Sharper, and the One Habit that Stops it In early 2024, an employee at Arup, a global engineering firm, joined a video call with several colleagues, including someone who appeared ...
The Invisible Workforce
The Shadow AI Running Inside Your Clients' Environments and How MSPs Can Get Ahead of It It's Monday morning. A client's controller is on the phone. She spent Friday afternoon cleaning up the vendor list inside their accounting platform's new ...
Your AI Agent Visits Websites on Your Behalf. Attackers Are Leaving It Notes.
The last two years of AI adoption inside businesses have followed a pretty consistent pattern. A team tries a tool, it saves them time, word gets around, and suddenly half the company is using something IT didn't approve. Now those ...
More Articles
Want to Get More Done? Shrink Your Work Time
Ever notice how much you get done right before a trip? One of the CEOs I work with said the same thing—he couldn’t believe how productive he was before heading out. Deadlines got met. Tasks got delegated. Decisions got made ...
Are You Stuck in a Liability Loop? How to Break Free Before It’s Too Late
Groundhog Day….again! Did you go out on February 2nd to see if the groundhog spotted its shadow? It’s a pretty important day ...
Your MSP’s Reputation is on the Line: Will You Let Cybersecurity Liability Destroy You?
How much is your reputation worth? A thousand dollars? A million? The truth is your reputation is priceless. It follows you throughout your career and determines whether clients trust you with their business. So, what happens when it’s damaged? ...
Office Mandates Are Driving Top Talent Away
The good news is that the old way of life is starting to seep back in, replacing the “new normal” lifestyle that originated in 2020. Masks are no longer mandated, and people feel safer out in public. However, the bad ...
Cybersecurity Laws Are Changing—Is Your MSP Ready for What’s Coming?
Cybersecurity is a hot topic, and the government is finally catching up. This year alone, 29 new cyber laws went into effect across 20 states. Was your state one of them? More importantly, how do these new laws impact your ...
Cyber Liability Is Coming for You: Here’s How to Stop It
Where were you on New Year’s Eve 1999? If you were in IT, you probably remember holding your breath, waiting to see if Y2K would bring down the world’s computer systems. It didn’t happen, but the new millennium still had ...
Third-Party Integration for Google Code Assist Debuts
Your business may know that Google’s powerful AI-assisted coding platform, Google Code Assist, has a new update to make the tool even more useful and powerful. The update supports third-party integration for Google Code Assist tools, which supports faster, more ...
Would Your Users Spot This Attack? If Not, Your MSP Is at Risk
You’re busy. Your team is busy. Your clients are busy. And that’s exactly what cybercriminals are counting on. A new social engineering attack is making its way into networks across the world—and it’s shockingly simple. Here’s how it works: Step ...
Cybersecurity Complexity: Your Biggest Risk or Your Greatest Opportunity?
More than half of executives now view complexity as their biggest cybersecurity challenge, according to a recent IBM report. And with the average organization juggling 83 security tools across 29 vendors, it’s no surprise. This tangled mess of solutions doesn’t ...
AI Creates Code, Developers Remain In Charge
“AI is going to take our jobs!” “Soon, everything will be done by robots.” Statements like these have become increasingly common. Now, with the explosion of generative AI tools, there’s a sense of impending doom in some industries, spurred on ...
AI, Cyber Threats, and the Hidden Liabilities MSPs Can’t Ignore
At some point, someone will get past your defenses. It’s inevitable. Maybe it’s a phishing attack that tricks a user. Maybe it’s a zero-day vulnerability in your vendor’s software. Or maybe it’s something as simple as a weak password. The ...
