Galactic Research: Articles & Insights
Threat Thursday: June 18th, 2026
Welcome to Threat Thursday, Galactic's weekly threat intelligence roundup. Every Thursday we break down the cybersecurity stories that matter most for protecting your organization, with each item split into what happened, what it could mean for you, and what to ...
AI Security
OpenClaw's Marketplace Got Stuffed With Malware. Here's Why That Was Always Going to Happen.
What a Malware-Filled AI Agent Marketplace Tells Us About How the Industry Keeps Making the Same Mistake I've spent the better part of my career watching organizations adopt new technology faster than they can secure it, and documenting what happens ...
The Deepfake Was Convincing. So Was My Backpack.
Why Social Engineering Still Works, Why AI is Making it Sharper, and the One Habit that Stops it In early 2024, an employee at Arup, a global engineering firm, joined a video call with several colleagues, including someone who appeared ...
The Invisible Workforce
The Shadow AI Running Inside Your Clients' Environments and How MSPs Can Get Ahead of It It's Monday morning. A client's controller is on the phone. She spent Friday afternoon cleaning up the vendor list inside their accounting platform's new ...
Threat Intelligence
Threat Thursday: June 18th, 2026
Welcome to Threat Thursday, Galactic's weekly threat intelligence roundup. Every Thursday we break down the cybersecurity stories that matter most for protecting your organization, with each item split into what happened, what it could mean for you, and what to ...
Threat Thursday: June 11th, 2026
Welcome to Threat Thursday, Galactic's weekly threat intelligence roundup. This week's stories share one theme: the gap between a vulnerability becoming public and a working exploit existing is collapsing toward hours, and the coordinated disclosure process meant to give defenders ...
Threat Thursday: June 4th, 2026
Welcome to Threat Thursday, Galactic's weekly threat intelligence roundup. This week's stories have a clear pattern: attackers didn't find obscure entry points or novel techniques but instead went after the things you were already using and already trusting. As always, ...
Strategy & Leadership
Building Trust in Executive Relationships: Lessons from King Lear
A Framework for Establishing the Kind of Trust that Survives Budget Season Imagine the curtain going up and a group of players act out the opening scenes of Shakespeare's King Lear, just for you. An aging king sits in his ...
Your Jokes Were Funny. They Still Didn't Renew.
How MSPs Build the Kind of Client Rapport That Survives a Budget Review You walked out of the meeting feeling good. The handshake was firm, the small talk landed, and you even got a laugh with the printer joke. You ...
Value That Converts: Why Your vCSO Pitch Keeps Getting Pushed to IT
You walked out of that meeting feeling like a closer. Your credentials were on point. You covered the whole stack: EDR, SIEM, MDR, quarterly risk assessments, tabletop exercises, NIST alignment. Your vCSO offering was solid. You even had a phased ...
Security Education
Vulnerabilities Are Now the #1 Way In. The Window to Fix Them Is Closing.
Most of the time, I didn't break into a network so much as let myself in through something with a fix already out (just not installed yet): the VPN concentrator three versions behind, the firewall with a known vulnerability fixed ...
Your OSINT Reality Check: Here’s What an Attacker Is Finding in 30 Minutes or Less
Today’s connected, AI-driven digital ecosystem has made it easier than ever to build a professional brand, network with peers, and share ideas with a wider audience. It’s opened doors for businesses that simply didn't exist before: new customers, new partnerships, ...
Part 2: Threat Actors Don't Pick You. You Just Happen to Be There.
In Part 1, we established that Handala didn't pick Stryker off a strategic target list and then figure out how to break in. They found access, recognized the value, and used it. That's still a deliberate, damaging attack—it just means ...
All Articles
New Ransomware Threatens To Release Stolen Data To Public
The leaders of the ransomware known as Sodinokibi (REvil Ransomware) have announced a nasty new tactic to get their victims to pay up when their files get encrypted. The hackers are now ...
New Icons Coming To Microsoft Windows 10
Windows users aren't big fans of change. Recall the cries of outrage when Microsoft tried in vain to retire MS Paint, which was never a very good graphics program and only a ...
Instagram Adds AI To Warn You About Offensive Comments
Instagram has made a recent change you should be aware of. Any time you make a comment, you may get a popup warning that your comment may be "potentially offensive". That is, ...
Hacked Ring Devices Are Scaring Customers With Voices
On the Dark Web, there's a live webcast show called "NulledCast" that few people have ever heard of. It's pretty popular in Dark Web circles, though. The premise of the show is ...
The Amount Of Earth Google Has Mapped So Far
These days, who hasn't made use of Google Maps? It has become an indispensable navigation tool and smart phone navigation. It is powered by Google Maps and could arguably be described as ...
New Zeppelin Ransomware Brings Companies To A Halt
Researchers at BlackBerry Cylance have discovered a new and dangerous strain of ransomware in the wild dubbed "Zeppelin". It has been used to target small numbers of healthcare and technology-related companies in ...
Update Amazon Blink Cameras To Fix Security Vulnerabilities
Do you have a home security system that incorporates Amazon's Blink XT2 cameras? If so, be advised that researchers at Tenable Security recently identified several serious security flaws that would allow an ...
Ransomware Uses New Method To Get Past Antivirus Programs
Researchers at SophosLabs have discovered a new threat to be on the alert for. A variant of the Snatch ransomware has been spotted in the wild. It features an innovative means of ...
Windows 10 Mobile OS Complete End of Life Is Here
Are you using a device that's running on Windows 10 Mobile? If so, you don't have a lot of company. Sadly, the OS never really caught on. Microsoft pulled the plug on ...
New Gmail Attachment Feature Makes Forwarding Easier
Google has a solid reputation when it comes to making a steady stream of improvements to its large and growing base of products and services. They have a demonstrated a track record ...
About Half A Million Credit Cards Found On Dark Web
Researchers from Group-IB monitor the Dark Web and have recently reported the appearance of nearly half a million credit card records available for sale. Each record is valued at more than ...
New Trojan Malware Steals Passwords From Chrome
If you use Google's Chrome web browser, there's a new threat you should be aware of. A new trojan targeting Windows-based machines will attempt to steal passwords stored in the Chrome browser. ...
