RESEARCH
Your OSINT Reality Check: Here’s What an Attacker Is Finding in 30 Minutes or Less
Today’s connected, AI-driven digital ecosystem has made it easier than ever to build a professional brand, network with peers, and share ideas with a wider audience. It’s opened doors for businesses that simply didn't exist before: new customers, new partnerships, ...
Cyber Compliance
Stop Getting Mad When Your Client Won’t Buy Compliance
You know the look. You explain how they need MFA, a risk assessment, documented policies, backups that actually restore… and your client stares back at you like you just recited the GDPR in ancient Greek. You leave the meeting frustrated. ...
“Fined Without a Breach?” Why the Wojeski $60,000 Penalty Matters—even if You Think You’re Small
You’ve seen two kinds of headlines after cyber incidents: (1) lawsuits and (2) regulatory enforcement. The recent $60,000 fine against Wojeski ...
New California Audit Law Just Put Your MSP on the Hook. Here’s How to Turn It Into Recurring Revenue
If your clients process sensitive data, your MSP is now part of the legal conversation. On July 24, 2025, California finalized new rules that require businesses processing high-risk personal information to undergo annual, independent cybersecurity audits. This isn’t just for ...
Cyber Liability
One Misconfigured AI Agent Can Impact Every Client You Manage
When One Action Hits Every Client, Governance Decides the Outcome Imagine a hypothetical that’s taught in law school every semester: A delivery driver abandons his route to join a drum circle for three days. On his way back, he causes ...
They Already Have an IT Department. Good. That’s Why You Should Call.
Last night I was at dinner with the CEO of an MSP. Good operator. Growing. Adding clients. Doing the work. We were walking around his town before dinner talking about the usual founder stuff. Processes. How to get people to ...
Agentic AI at the Edge: Opportunity, Autonomy & the Coming Legal Minefield
You’ve probably heard executives gush about autonomous AI agents, the shiny new productivity booster that can automate workflows faster than you can say “zero-trust.” But what they don’t hype is how agentic AI turns your cybersecurity playbook into an existential ...
Insurance & MSP Liability
The Clients You're Ignoring Are the Ones Who Will Sue You
I said something on stage at XChange last week that made a lot of people in the room uncomfortable. "Your smallest clients are your biggest risk." Not your enterprise accounts. Not the ones with complex environments and demanding SLAs. The ...
You’re Not Insured. You’re Just Hopeful.
So there I am, wrapping up a conference session—over 1,000 MSPs in the building—and one guy comes up clutching a fresh copy of Standardized like it’s a fire extinguisher in a server room. He’s nodding along, clearly rattled in all ...
Your MSP Carries More Risk Than a Magazine Stand—and That’s a Problem
Let’s talk about airport gift shops for a minute. You know the ones—tiny kiosks with $14 neck pillows, expired jerky, and three copies of Men’s Health no one’s ever going to read. Now, tell me—how much sensitive data do you ...
More Articles
Cyber Disasters Are Coming—Will Your Clients Be Ready?
Before the Guadalupe River surged 33 feet in Texas this past July, the alerts were already out. Phones buzzed. Radios screamed. ...
Who’s Going to Pay When the Lawyers Show Up? (Hint: Probably You)
Look, I’ll make this simple. You didn’t build your MSP so some lawyer could come along and tear it to pieces. Or so some regulator could slap you with fines that would make your next quarterly tax bill look like ...
Your Guest Users Could Be Your Biggest Threat—Here’s Why
Collaboration is the heartbeat of your business. It’s how deals get done, how partners stay aligned, and how you keep growth on track. But the same tools that let you collaborate might also be the fastest way to burn your ...
Why Smart CEOs & CFOs Document Every Tech Decision
What’s the cheapest, most effective way to protect your business from a cyber disaster, insurance denial, or legal attack? Write stuff down. Seriously. If you're making decisions about IT security, risk, or compliance—and especially when you're turning down recommendations—documenting the ...
The Day They Found Out Their Insurance Was Useless
It happened again. Last Monday morning, 7:44 AM. The office lights flicked on, the smell of burnt coffee filled the breakroom—and every single computer screen was black. Everything was locked down by ransomware. Hackers had another successful weekend. They did ...
“We Just Can’t Afford That.”
(The Five Words That Will Haunt Your MSP—And How to Make Sure They Don’t) Have you ever had a client look ...
The Dangerous Compliance Shortcut That Could Put Your MSP on the Hook for Negligence
Imagine sitting across from your best client. They tell you they’ve found a company that can build out their entire HIPAA compliance program in under three days. No heavy lifting. Fully automated. ...
Your Help Desk Tickets Will Be Used Against You in a Court of Law
Most MSPs don’t realize the real danger of their ticket documentation — until it’s too late. They think tickets are just ...
How Can You Look Yourself in the Mirror?
Be honest—how much are you spending every month on security tools? $5,000? $10,000? More? Now tell me this: do you have a written incident response plan? Not a vague idea. Not “oh yeah, we’d figure it out.” I mean a ...
Think Your Team Has You Covered? You Might as Well Wear a “Hack Me” Sign
If you’re an MSP owner or operations leader and you think you’re covered because your engineers figured out how to run a few open-source pen testing tools, or because your vendor does your pen test right after patching your servers—congratulations. ...
The Backdoor Microsoft Won’t Talk About—And Why It’s Already Wide Open
You didn’t ask for this. But here we are. Hidden in plain sight, buried deep inside Microsoft Entra ID, lies a backdoor so dangerous it might as well come with a sign that says, “Hack Me.” This isn’t fearmongering. It’s ...
If You Think Getting Risk Acceptance Signed Is “Adversarial”—You’re doing it wrong
I’ve heard it more times than I can count. “I don’t like making my clients sign risk acceptance documents. It feels ...
