RESEARCH
Your OSINT Reality Check: Here’s What an Attacker Is Finding in 30 Minutes or Less
Today’s connected, AI-driven digital ecosystem has made it easier than ever to build a professional brand, network with peers, and share ideas with a wider audience. It’s opened doors for businesses that simply didn't exist before: new customers, new partnerships, ...
Cyber Compliance
Stop Getting Mad When Your Client Won’t Buy Compliance
You know the look. You explain how they need MFA, a risk assessment, documented policies, backups that actually restore… and your client stares back at you like you just recited the GDPR in ancient Greek. You leave the meeting frustrated. ...
“Fined Without a Breach?” Why the Wojeski $60,000 Penalty Matters—even if You Think You’re Small
You’ve seen two kinds of headlines after cyber incidents: (1) lawsuits and (2) regulatory enforcement. The recent $60,000 fine against Wojeski ...
New California Audit Law Just Put Your MSP on the Hook. Here’s How to Turn It Into Recurring Revenue
If your clients process sensitive data, your MSP is now part of the legal conversation. On July 24, 2025, California finalized new rules that require businesses processing high-risk personal information to undergo annual, independent cybersecurity audits. This isn’t just for ...
Cyber Liability
One Misconfigured AI Agent Can Impact Every Client You Manage
When One Action Hits Every Client, Governance Decides the Outcome Imagine a hypothetical that’s taught in law school every semester: A delivery driver abandons his route to join a drum circle for three days. On his way back, he causes ...
They Already Have an IT Department. Good. That’s Why You Should Call.
Last night I was at dinner with the CEO of an MSP. Good operator. Growing. Adding clients. Doing the work. We were walking around his town before dinner talking about the usual founder stuff. Processes. How to get people to ...
Agentic AI at the Edge: Opportunity, Autonomy & the Coming Legal Minefield
You’ve probably heard executives gush about autonomous AI agents, the shiny new productivity booster that can automate workflows faster than you can say “zero-trust.” But what they don’t hype is how agentic AI turns your cybersecurity playbook into an existential ...
Insurance & MSP Liability
The Clients You're Ignoring Are the Ones Who Will Sue You
I said something on stage at XChange last week that made a lot of people in the room uncomfortable. "Your smallest clients are your biggest risk." Not your enterprise accounts. Not the ones with complex environments and demanding SLAs. The ...
You’re Not Insured. You’re Just Hopeful.
So there I am, wrapping up a conference session—over 1,000 MSPs in the building—and one guy comes up clutching a fresh copy of Standardized like it’s a fire extinguisher in a server room. He’s nodding along, clearly rattled in all ...
Your MSP Carries More Risk Than a Magazine Stand—and That’s a Problem
Let’s talk about airport gift shops for a minute. You know the ones—tiny kiosks with $14 neck pillows, expired jerky, and three copies of Men’s Health no one’s ever going to read. Now, tell me—how much sensitive data do you ...
More Articles
Why Your Incident Response Plan Is Not a Fire Extinguisher
Yesterday someone hit me with a question that made me blink twice: “Why would we pay a monthly fee for an incident response plan? Isn’t that just a document?” That’s like asking why you’d ever need to update your will, ...
Why We Don’t Plaster “CHANNEL ONLY” All Over Our Website (and Why That’s Good for You)
We’ve had more than a few MSPs ask us: “Can you make it clearer on your site that you’re channel-only?” Short answer? No. And you should be glad we don’t. Here’s why. If We Shout “CHANNEL-ONLY” From the Rooftops, You ...
Your Smallest Client Will Burn You
I was on a call last week with an MSP who was still trying to figure out what Cyber Liability Essentials really is. He thought it was something you sell as a one-off. A product. Something to upsell like MFA ...
If Victoria’s Secret Can Go Dark Overnight, What’s Stopping Your Clients from Doing the Same?
Let’s talk about the pink elephant in the room—Victoria’s Secret just pulled their U.S. website offline and paused some in-store operations. Why? Because of a “security incident.” No “hack.” No “breach.” No “ransomware.” Just a carefully worded statement: “We enacted ...
Skydiving Without a Waiver? That’s How Most MSPs Handle Security Decisions
Let’s talk about skydiving. Before you jump out of a plane, what’s the very first thing you’re required to do? Sign a waiver. You don’t even get on the plane until you acknowledge the risk—because when things go wrong at ...
Your Client Doesn’t Want “IT.” They Want Protection.
Let’s be honest. No one wakes up thinking, “I hope my MSP upgraded my RMM today.” They don’t care about patching schedules, firmware updates, or how many times your agent checked CPU usage. They care about one thing: Not getting ...
What Happens When the Small Client Becomes the Big Problem?
It’s your smallest client. The one who always pushes back on MFA. The one still using the same unmanaged laptop from 2016. The one who just “wants to keep it simple.” Now imagine they get breached. And it’s not just ...
Your Clients Think You’re Ready for a Breach—Are You?
Let me guess: your incident response plan is a two-page PDF that basically says “call IT and hang in there.” Maybe there’s a phone tree. Maybe a “stay calm” reminder. But if you’re honest—it’s not a plan. It’s a coping ...
Your Smallest Client Is Your Biggest Lawsuit Waiting to Happen
We just launched Cyber Liability Essentials, and here’s the wild part: Over 700 clients now have a fully documented Incident Response Plan—with communication playbooks, mapped responsibilities, and customized evidence ready to go. Let that sink in. While you’re still trying ...
If You’re Not Writing the Plan, You’re Writing the Check
When the breach hits, it won’t matter how fast you can spin up backups. What matters is who speaks first, who gets blamed, and who can prove they had a plan. Here’s the problem: most of your clients don’t have ...
Welcome to the Galactic Bubble—Now Let Me Pop It
I’m at Galactic Universe, and let me tell you: it’s electric. Everyone’s smiling. Everyone’s hugging. Everyone’s got a success story to share. You’d think we were celebrating unicorn valuations and flawless QBRs. It’s inspiring. It’s contagious. And honestly, I’m thrilled ...
The Breach Is Just the Beginning: Why Most MSPs Aren’t Ready for What Comes Next
You’re an MSP. You’ve got this. You’ve got backups the hackers can’t touch. You know how to restore a server faster than a barista makes espresso. Your EDR stack is top-notch, your RMM’s locked down, and you’ve got tabletop exercises ...
