Galactic Research: Articles & Insights
Part 1: The AI Implementation Question Is Coming. Are You Ready to Answer?
I had lunch a few weeks ago with an executive at a financial services firm, the kind of client every security advisor quietly hopes for: growing, regulated, complex enough to need real security help and profitable enough to pay for ...
AI Security
Part 1: The AI Implementation Question Is Coming. Are You Ready to Answer?
I had lunch a few weeks ago with an executive at a financial services firm, the kind of client every security advisor quietly hopes for: growing, regulated, complex enough to need real security help and profitable enough to pay for ...
OpenClaw's Marketplace Got Stuffed With Malware. Here's Why That Was Always Going to Happen.
What a Malware-Filled AI Agent Marketplace Tells Us About How the Industry Keeps Making the Same Mistake I've spent the better part of my career watching organizations adopt new technology faster than they can secure it, and documenting what happens ...
The Deepfake Was Convincing. So Was My Backpack.
Why Social Engineering Still Works, Why AI is Making it Sharper, and the One Habit that Stops it In early 2024, an employee at Arup, a global engineering firm, joined a video call with several colleagues, including someone who appeared ...
Threat Intelligence
Threat Thursday: June 18th, 2026
Welcome to Threat Thursday, Galactic's weekly threat intelligence roundup. Every Thursday we break down the cybersecurity stories that matter most for protecting your organization, with each item split into what happened, what it could mean for you, and what to ...
Threat Thursday: June 11th, 2026
Welcome to Threat Thursday, Galactic's weekly threat intelligence roundup. This week's stories share one theme: the gap between a vulnerability becoming public and a working exploit existing is collapsing toward hours, and the coordinated disclosure process meant to give defenders ...
Threat Thursday: June 4th, 2026
Welcome to Threat Thursday, Galactic's weekly threat intelligence roundup. This week's stories have a clear pattern: attackers didn't find obscure entry points or novel techniques but instead went after the things you were already using and already trusting. As always, ...
Security Education
Vulnerabilities Are Now the #1 Way In. The Window to Fix Them Is Closing.
Most of the time, I didn't break into a network so much as let myself in through something with a fix already out (just not installed yet): the VPN concentrator three versions behind, the firewall with a known vulnerability fixed ...
Your OSINT Reality Check: Here’s What an Attacker Is Finding in 30 Minutes or Less
Today’s connected, AI-driven digital ecosystem has made it easier than ever to build a professional brand, network with peers, and share ideas with a wider audience. It’s opened doors for businesses that simply didn't exist before: new customers, new partnerships, ...
Part 2: Threat Actors Don't Pick You. You Just Happen to Be There.
In Part 1, we established that Handala didn't pick Stryker off a strategic target list and then figure out how to break in. They found access, recognized the value, and used it. That's still a deliberate, damaging attack—it just means ...
Strategy & Leadership
Building Trust in Executive Relationships: Lessons from King Lear
A Framework for Establishing the Kind of Trust that Survives Budget Season Imagine the curtain going up and a group of players act out the opening scenes of Shakespeare's King Lear, just for you. An aging king sits in his ...
Your Jokes Were Funny. They Still Didn't Renew.
How MSPs Build the Kind of Client Rapport That Survives a Budget Review You walked out of the meeting feeling good. The handshake was firm, the small talk landed, and you even got a laugh with the printer joke. You ...
Value That Converts: Why Your vCSO Pitch Keeps Getting Pushed to IT
You walked out of that meeting feeling like a closer. Your credentials were on point. You covered the whole stack: EDR, SIEM, MDR, quarterly risk assessments, tabletop exercises, NIST alignment. Your vCSO offering was solid. You even had a phased ...
All Articles
New Dangerous Malware Is Disguising Itself As Fortnite Launcher
LokiBot burst onto the scene in 2015, and has earned a reputation as being a powerful. This fearsome trojan is being distributed in a new way that poses a very real threat ...
Dashlane Password Manager Removed From Google For Privacy Issues
Do you use the Dashlane Chrome web extension to help you manage your passwords? If so, you're not alone. The extension has more than three million users based on download stats. Unfortunately, ...
Old School Virus Called KBOT Is Hitting Networks
There was a day when worms were once common, terrifying threats on the internet. In the early days of the world wide web, there were a number of famous attacks that were ...
Malware And Viruses On Apple/Mac Systems Are On The Rise
For most of Apple's history, the company has been able to cast itself as a safer alternative to Windows-based computers.Hackers tended to focus the bulk of their efforts on Wintel boxes (Windows ...
Windows 10X Will Assist With Folding Screens And Dual Monitors
A lot of people raise a curious eyebrow when they hear the term Windows 10X for the first time. It's a bit of a niche product, but it is interesting. In recent ...
Dangerous New Trojan Can Infect Systems Through Wifi
If you're not already familiar with the Emotet trojan, it deserves a special spot on your radar. It's one of the most dangerous forms of malware in the world today. Their success ...
CoronaVirus Scare Is Being Used By Scammers To Trick People
There is no low that hackers and scammers won't stoop to. The US Federal Trade Commission (FTC) has issued a warning about a worldwide scam in progress relating to fears surrounding the ...
New Windows 10 Search Issue May Just Require A Reboot
On February 5th, after the latest Windows 10 update, many users found that they were unable to make use of the search function built into the operating system. The most common result ...
People Are Moving From Windows 7 To Windows 10 For Security
Despite the age of the OS, Windows 7 has enjoyed a surprisingly large and loyal user base. That changed suddenly when Microsoft finally pulled the plug on Windows 7 support. It couldn't ...
Videos In Google Photos Accounts May Have Been Exposed
Security lapses can happen to any company, large or small. No one is immune. Not even Google. Recently, the company began sending out email notifications to some users explaining that a bug ...
Some Smart Light Bulbs Are Vulnerable To Hackers
Hackers will take any and every opportunity presented to them, even if it means hacking smart light bulbs. Recently, security researchers at Check Point discovered a bug in the Philips Hue smart ...
Password Manager Malware Tricks Users Into Revealing Their Passwords
There's a new threat making the rounds called 'Metamorfo' that you should be aware of. The malware began its life as a banking trojan. This news is from researchers at Fortinet, who ...
