ClickFix has become one of the most noteworthy malware delivery methods in 2026 because it bypasses the normal technical choke points MSPs rely on and instead turns end users into the execution mechanism. Recent reporting indicates the technique dominated malware delivery in the March-May 2026 period and should no longer be treated as an emerging tactic […]
Most MSPs talk about security as a way to “keep you safe.” That’s fine, but it misses the reason your clients are suddenly paying attention to compliance: their ability to win business, keep contracts, and stay insurable now depends on being able to prove they’re safe to work with. Compliance frameworks are not just about […]
Imagine you hire a handyman to mount your new TV. A few days later, it crashes off the wall. Your first instinct isn’t to question the brand of drill he used. You blame the man who held it. Something he did wasn’t up to par — the anchor placement, the stud check, the torque on […]
The “death of human pen testing” makes a great headline, but what we are really watching is the death of traditional pen testing: slow, point‑in‑time, human‑only engagements that cannot keep up with AI‑accelerated attack surfaces or modern compliance expectations. Automated and AI‑assisted testing will gut the old model — but they are far more likely to […]
There has been a 93% year-over-year increase in employees transferring enterprise data to AI tools. — Zscaler 2026 AI Threat Report Managed service providers are quietly inheriting a new kind of data‑loss problem: clients’ employees are shoveling sensitive data into AI tools at a rate that has doubled in the last year, with the average […]
Most MSPs are accidentally talking prospects out of buying cybersecurity and compliance. By leaning on “shock” statistics about how few businesses take security seriously, they normalize doing nothing instead of making action feel urgent and expected. Stop selling security like a bad cheeseburger Imagine trying to sell a burger by saying, “Did you know 80% […]
For attackers, compromising a managed service provider is one of the highest-leverage plays in cybersecurity. NSA and CISA warn that malicious actors are known to target MSPs because MSPs often hold privileged access into customer environments, giving an attacker a trusted path to pivot into multiple downstream tenants and making those actions harder to detect […]
The MSP conversation around AI has changed. In 2026, AI is no longer a novelty for demos, webinars, and investor decks; it is becoming a margin story, a service-delivery story, and a client-retention story. Recent MSP market analysis tied to Omdia’s 2026 outlook points to slower overall growth, more intense competition, and rising expectations around […]
A vendor questionnaire is not vendor risk management. It’s a starting point. Sometimes a useful one. But if your process ends with a filled-out form and a SOC report in a folder, you’re not managing risk — you’re documenting optimism. In this Get NIST-y, Jared and Mike use the Mythos supply chain mess to highlight […]
AI is everywhere right now — and if you’re running an MSP, you’re feeling it from every direction. Your PSA has AI. Your RMM has AI. Your documentation platform has AI. Your quoting tool probably has AI. At this point, we’re all just waiting for the coffee maker to start summarizing tickets. But here’s the […]