Cyber Weekly: Supply chains under siege
June 21, 2026
If you run a small or medium business and you've been treating cybersecurity as a big company problem, this week should change your mind. We had a Fortinet credential leak exposing 74,000+ devices, a WordPress plugin supply chain attack backdooring paying customers, a critical Splunk bug being exploited in the wild, and a Salesforce OAuth breach that started with one vendor's old password. The common thread? None of these required sophisticated, nation-state-level attacks. They required a forgotten admin account, an auto-update you trusted, and an exposed VPN. Here's what happened, what it means, and what to do about it.
Read moreThe First Hour After Things Go Wrong
June 20, 2026
The worst time to figure out your next move is at 9 a.m. with the screens frozen and the phone ringing. Here's how to spend the first sixty minutes after an attack so panic doesn't make the call for you.
Read moreNo, Microsoft Isn't Backing Up Your Data
June 20, 2026
Microsoft 365 and Google Workspace don't back up your data automatically. Most small businesses don't know that until it's too late. Here's what's at risk and how to protect it.
Read moreSmall Business Security Posture: 3 Fundamentals Beat Budgets
June 18, 2026
Small businesses aren't collateral damage anymore - they're the main target. The good news: fixing your security posture doesn't take an enterprise budget. It takes three fundamentals done well.
Read more