Technology

Cybersecurity

A warning from inside the AI labs

February 11, 2026

•

20 min read

AI’s Power Curve Is Outpacing Human Readiness

A warning from inside the AI labs

The CEO of Anthropic, Dario Amodei, is issuing one of the starkest warnings yet from within the AI industry itself.

In a sweeping essay titled “The Adolescence of Technology,” Amodei argues that humanity is approaching a moment that will test us as a species—not because AI is evil, but because it may soon be too powerful for our institutions, norms, and safeguards to control.

His message is blunt:

we are not psychologically, politically, or structurally ready for what’s coming next.

What “powerful AI” actually means

Amodei isn’t talking about better chatbots or smarter autocomplete.

He defines “powerful AI” as systems that:

Outperform Nobel Prize–level experts across biology, math, engineering, and writing
Operate semi-autonomously, taking and giving instructions
Design systems—and even robots—for their own use
Scale their capabilities faster than humans can adapt

In his view, AI that meets this definition could arrive within one to two years if current trends continue.

That timeline alone should change how seriously this conversation is taken.

Why this moment is different

We’ve debated AI risks before—but Amodei argues 2026 is meaningfully different from 2023.

Progress hasn’t slowed.

Capabilities haven’t plateaued.

And incentives haven’t cooled.

If anything, the economic upside—automation, productivity gains, cost reduction—is so massive that restraint becomes politically and commercially difficult.

As Amodei puts it, this is the trap:

the prize is so glittering that no one wants to touch the brakes.

The systems under strain

The concern isn’t just technical failure.

It’s systemic mismatch.

Amodei questions whether:

Governments can regulate fast enough
Companies can self-restrain under competitive pressure
Societies can absorb large-scale job displacement
Ethical frameworks can keep pace with autonomous decision-making

A quarter of people in the UK already fear losing their jobs to AI within five years. Amodei has previously warned that entry-level white-collar roles could be hit first—potentially pushing unemployment toward 20%.

That’s not disruption.

That’s reconfiguration.

Why safety warnings from builders matter

Anthropic isn’t an outside critic.

It builds Claude, one of the world’s most advanced AI models, and recently published an extensive “AI constitution” outlining how it aims to develop systems that are broadly safe and ethical.

Amodei himself helped found Anthropic after leaving OpenAI, positioning the company as a counterweight to purely acceleration-driven development.

When someone with this proximity to cutting-edge systems says we are “considerably closer to real danger”, it deserves attention.

The real issue: maturity, not malice

Amodei’s argument isn’t that AI will inevitably harm humanity.

It’s that:

Power is arriving faster than wisdom
Capability is outpacing governance
Autonomy is increasing before trust models exist

AI doesn’t need intent to cause harm.

It only needs scale, speed, and insufficient oversight.

Why SMBs, healthcare, law firms, and schools should care now

This isn’t abstract philosophy.

SMBs will face automation pressure without safety nets
Healthcare will rely on systems that must be trusted implicitly
Law firms will grapple with responsibility, liability, and authorship
Schools will educate students for jobs that may vanish mid-career

AI safety is no longer a future problem.

It’s a near-term governance challenge.

The takeaway

AI is entering its adolescence—powerful, fast-growing, and not yet fully understood.

Whether this becomes a breakthrough era or a destabilizing one won’t be decided by models alone, but by how seriously humans take the responsibility that comes with them.

Waking up isn’t panic.

It’s preparation.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #SMBrisk #dataprotection #AIgovernance

Technology

Cybersecurity

Tips

An MSP Isn’t Just IT Support. It’s Risk Management.

•

20 min read

An MSP Isn’t Just IT Support. It’s Risk Management.

Most people think an MSP is just “IT support.”

Password resets
Printer issues
Someone to call when things break

That’s a tiny slice of what a good MSP actually does—and focusing only on that misses the real value entirely.

Here’s what a real MSP delivers, and why it matters to the business.

1. Reducing risk before it becomes a problem

The most important work happens quietly.

A good MSP is constantly identifying:

Security gaps
Outdated systems
Backup failures
Single points of failure

The real value isn’t how fast they react.

It’s how many incidents never happen at all.

That’s risk reduction—not tech support.

2. Keeping the business running when things go wrong

Failures are inevitable. Outages happen. Systems break.

The difference is whether:

The business grinds to a halt
Or operations continue with minimal disruption

A good MSP plans for downtime before it happens—so when something fails, it’s an inconvenience, not a crisis.

3. Maintaining a strong security posture

Cyber threats don’t stand still.

A real MSP:

Tracks how threats are evolving
Applies updates consistently
Enforces security standards across users and devices

Without this, businesses end up relying on outdated assumptions and legacy tools—thinking they’re protected when they’re not.

4. Managing vendor and technology sprawl

Most companies don’t choose their tech stack.

They accumulate it.

Over time, this leads to:

Redundant software
Overlapping licenses
Poor integrations
Rising costs

An MSP helps rationalize tools so technology supports the business instead of slowing it down.

5. Supporting growth without chaos

Growth increases complexity.

New hires. Remote teams. New locations. New systems.

A good MSP designs infrastructure that scales cleanly, instead of forcing the company to rebuild IT every time it grows or changes shape.

6. Giving leadership time back

Every hour leadership spends dealing with IT issues is an hour not spent on:

Customers
Strategy
Growth

A good MSP removes that distraction quietly, so leadership can focus on running the business—not managing technology fires.

7. Creating predictability

Reactive IT is expensive, stressful, and unpredictable.

A real MSP replaces:

Surprise outages
Emergency spending
Last-minute scrambles

With:

Planning
Stability
Predictable costs

That predictability is what allows businesses to operate with confidence.

The real difference

Good IT support fixes problems.

A good MSP makes sure those problems don’t run the business.

That difference matters.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #SMBrisk #dataprotection #MSP

Cybersecurity

Technology

Must-Read

Why “how you send a file” actually matters

February 24, 2026

•

20 min read

File Sharing Is a Security Decision, Not a Convenience Choice

Why “how you send a file” actually matters

Sharing files feels simple—attach, upload, send, done.

But every method you use leaves copies, access paths, and long-term risk behind.

The question isn’t what’s easiest.

It’s what leaves the fewest artifacts once the job is done.

Let’s break down the most common file-sharing methods, what actually happens behind the scenes, and where each one makes sense—or doesn’t.

Email: Convenient, but the worst option

Email is still the default for many people, and that’s the problem.

When you email a file:

A copy sits in your Sent Items
A copy lands in the recipient’s inbox
Additional copies exist on email provider servers
Backups, archives, and retention policies may preserve it indefinitely

You lose control immediately.

You can’t revoke access.

You can’t set expiration.

You can’t reliably delete all copies later.

From a security standpoint, email is file duplication at scale.

Best for:

Low-risk documents where confidentiality doesn’t matter.

Avoid for:

Sensitive files, client data, contracts, financials, or anything regulated.

USB drives & external storage: Better, but still risky

Physical drives feel safer because they’re offline—but that safety is conditional.

What actually happens:

The file exists on the original system
A copy exists on the USB or external drive
Often another copy is created on the recipient’s device

The biggest risk isn’t hacking—it’s loss.

If the drive is misplaced:

Whoever finds it may gain access
Encryption is often missing
There’s no way to remotely revoke or track access

USB drives reduce online exposure, but introduce physical security risk.

Best for:

Short-term transfers when encryption is enabled and the drive is controlled.

Avoid for:

Unencrypted data, repeated sharing, or environments with many users.

Cloud sharing: Flexible, but persistent

Cloud sharing (OneDrive, Google Drive, Dropbox, etc.) is a major improvement over email.

How it works:

The file stays in your cloud storage
You send a link, not the file itself
You can control permissions (view, download, edit)
You can often set expiration dates

This reduces uncontrolled copying and adds access management.

However, there’s an important caveat:

The file continues to live in your cloud storage
If permissions aren’t cleaned up, access may linger
The data still exists until you explicitly delete it

Cloud sharing is secure if managed properly.

If not, it quietly becomes long-term data exposure.

Best for:

Collaboration, controlled sharing, ongoing access needs.

Avoid for:

One-time transfers where the file shouldn’t persist afterward.

OneSpace: Purpose-built for secure file delivery

OneSpace was designed specifically for secure file sharing, not collaboration or storage.

What makes it different:

The file is made available only to the intended recipient
No extra copies are stored across inboxes or drives
The system is designed for delivery, not accumulation
Once accessed or expired, the file can disappear entirely

This minimizes:

Duplication
Residual access
Long-term storage risk

In security terms, this follows the principle of least data exposure.

Best for:

Sensitive documents, client data, legal files, financial records, regulated environments.

Avoid for:

Long-term collaboration or shared working documents.

The real takeaway

Every file-sharing method answers one question differently:

How many copies of this file exist after I’m done?

Email: Many, and you can’t control them
USB: Fewer, but loss creates instant exposure
Cloud sharing: Controlled, but persistent
OneSpace: Minimal, temporary, and intentional

Good security isn’t about paranoia.

It’s about reducing unnecessary copies and access paths.

Choose the method that matches the risk

Convenience scales risk faster than most people realize.

The safest file-sharing method is the one that:

Creates the fewest copies
Allows access control
Removes itself when the job is done

That’s how data stays shared—without staying exposed.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #SMBrisk #dataprotection #filesharing

Technology

Cybersecurity

Must-Read

Scams Aren’t a Bug. They’re a Revenue Stream.

February 10, 2026

•

20 min read

Scams Aren’t a Bug. They’re a Revenue Stream.

What Meta is admitting—quietly, but clearly

Meta Platforms has effectively acknowledged something critics have warned about for years:

a significant portion of its revenue is fueled by scam and fraud-based advertising.

Roughly 10% of Meta’s total revenue—about $16 billion— is tied to ads linked to scams, fraud, and illicit activity across Facebook, Instagram, and WhatsApp.

This isn’t accidental leakage.

It’s systemic.

What internal reports show

According to internal documentation and whistleblower accounts, Meta routinely allows ads connected to:

Fraudulent e-commerce storefronts
Fake investment and crypto schemes
Illegal online casinos
Banned or unapproved medical products
Industrial-scale scam operations

The scale is difficult to overstate.

Internal estimates suggest up to 15 BILLION high-risk scam ads are shown to users every single day.

Even Meta’s own internal analysis reportedly attributes $7 billion in annualized revenue directly to these high-risk ads.

That’s money generated by amplifying criminal activity—at global scale.

The algorithmic feedback loop no one wants to discuss

The most disturbing part isn’t just that scam ads exist.

It’s what happens after you interact with one.

Former Meta safety investigators have stated that if a user clicks a scam-related ad—even once—the platform’s algorithm is likely to:

Infer interest or vulnerability
Increase exposure to similar ads
Create a reinforcing loop of exploitation

In other words, victims are algorithmically profiled and fed more scams.

This isn’t just negligence.

It’s incentive alignment gone wrong.

Why this matters far beyond social media

If a bank knowingly profited from fraud, regulators would shut it down.

Yet Big Tech platforms are allowed to:

Take a cut of scam revenue
Claim neutrality
Shift responsibility to users

That double standard is becoming impossible to justify.

And the fallout doesn’t stop with individual victims.

The impact on SMBs, healthcare, law firms, and schools

SMBs lose customers to scams run on platforms they advertise on
Healthcare patients are targeted with fake treatments and miracle cures
Law firms deal with identity theft, financial fraud, and recovery litigation
Schools see students and families exposed to industrialized scams

This isn’t just a consumer protection issue.

It’s an ecosystem risk.

Why “better moderation” isn’t the real fix

The problem isn’t that Meta can’t detect scam ads.

It’s that:

Scam ads convert
Scam ads pay
Scam ads scale

As long as revenue incentives reward volume over safety, moderation will always lag.

You don’t fix this with more trust badges.

You fix it by changing what’s profitable.

The uncomfortable question regulators keep dodging

If regulators wouldn’t tolerate:

Banks profiting from fraud
Payment processors amplifying scams
Telecoms routing criminal activity at scale

Why is Big Tech treated differently?

At some point, “platform” stops being an excuse and starts sounding like a business model.

The takeaway

Scams on social platforms aren’t slipping through the cracks.

They’re being monetized, optimized, and scaled.

Until accountability follows the money, the incentives won’t change—and neither will the outcome for users.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #SMBrisk #dataprotection #adfraud

Technology

Cybersecurity

It’s taking the Internet by storm what is Clawdbot and why does everybody want it?

January 28, 2026

•

20 min read

When AI Stops Talking and Starts Doing

It’s taking the Internet by storm what is Clawdbot and why does everybody want it?

What is Clawd.bot?

Clawd.bot (often called Clawdbot) is a new kind of AI chatbot—one that doesn’t just answer questions, but takes real actions on your behalf.

Unlike cloud-based assistants that live in a browser tab, Clawd.bot is typically self-hosted and runs on your own machine or server. From a chat interface like Slack, Telegram, or WhatsApp, users can instruct it to perform tasks that normally require jumping between apps, tabs, and tools.

Think of it less like a search engine…

and more like a digital operator.

How people are using Clawd.bot

What’s driving the excitement is how practical it feels.

Common use cases include:

Inbox management
Cleaning email, drafting replies, flagging urgent messages
Calendar coordination
Scheduling meetings, sending follow-ups, resolving conflicts
Automation tasks
Running scripts, pulling logs, summarizing system activity
Browser actions
Opening sites, collecting information, filling forms
Cross-app workflows
“When this happens in email, do that in Slack”

All of this is triggered through plain-language chat commands, which makes it feel natural and fast—especially for people juggling multiple tools daily.

Why it feels so powerful

Clawd.bot sits at the intersection of three trends:

AI that understands intent
Automation that saves time
Local control instead of cloud dependency

For solo founders, IT professionals, and power users, it can feel like finally having a personal assistant that actually executes instead of just advising.

That’s a big shift in how people think about AI productivity.

A few practical examples

“Clear my inbox and respond to anything marked urgent.”
“Pull yesterday’s system errors and summarize them.”
“Schedule meetings with everyone who replied yes.”
“Run this script and notify me if it fails.”

These are tasks that normally take dozens of clicks—or get delayed entirely. Clawd.bot compresses them into a single instruction.

Why it can also be dangerous (briefly)

The same capability that makes Clawd.bot useful is also what makes it risky.

Because it can act, not just talk, it often has access to:

Files
Email
Browsers
Scripts or system commands

If misconfigured or exposed carelessly, that level of access can create unintended consequences. This isn’t about fear—it’s about recognizing that tools with autonomy require more care than simple chatbots.

The risk isn’t the idea.

It’s how responsibly it’s deployed.

The bigger picture

Clawd.bot represents where AI is heading:

from conversation → execution.

That shift is exciting, and it opens the door to serious productivity gains. It also means users need to think a bit more like operators and less like app consumers.

Used thoughtfully, tools like this can save enormous time.

Used casually, they can introduce avoidable risk.

As with any powerful technology, fundamentals matter.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #SMBrisk #dataprotection #AItools

Technology

Cybersecurity

Everyone is going crazy for clawdbot and it’s so dangerous

•

20 min read

Convenience Is Turning AI Into an Attack Surface

This feels a lot like 2020—for all the wrong reasons

Remember the toilet paper panic buying in 2020?

The Mac mini rush for Clawd.bot feels eerily similar.

Everyone’s excited. That part makes sense.

Clawd.bot is genuinely impressive.

But the way many people are deploying it right now?

Absolutely terrifying.

I’ve been reading setup posts—not about the tech itself, which is interesting—but about how people are exposing it.

And what I’m seeing is a textbook case of convenience beating fundamentals.

What people are doing (and why it’s dangerous)

Common patterns keep popping up:

Opening ports on home routers
Running Clawd.bot on personal networks
Little to no authentication
No network segmentation
No hardening
No monitoring

“I can access it from my phone now!”

Cool.

So can everyone else.

Your home network is your house.

Opening a port on your router is leaving the front door open.

Yes—you can walk in without a key.

So can anyone who finds the address.

This is not theoretical risk

Researchers are already finding exposed Clawd.bot instances online.

This isn’t a hypothetical “what if.”

It’s already happening.

Some users are shocked to discover $140 per day in LLM usage costs.

Now imagine:

A stranger finds your exposed instance (not hard)
They issue commands
Your AI starts working… for them
Costs spike
Data gets touched
Systems get exercised

Even if nothing “breaks,” damage is already done.

Why agentic AI raises the stakes

This isn’t a normal web app.

Clawd.bot isn’t just reading data.

It can act.

Depending on configuration, it may have access to:

Email
Files
Shell commands
Browsers
Messaging platforms

That means exposure isn’t just a privacy issue.

It’s a control issue.

When an AI can execute actions, every network mistake becomes amplified.

The real problem isn’t the software

Let’s be clear:

Clawd.bot isn’t the villain here.

The real risk is users:

Exposing services directly to the internet
Skipping basic security principles
Treating experimental tools like consumer apps

This is what turns promising technology into an attack surface.

Before you buy that Mac mini

Slow down.

At minimum:

Fix your network first
- Use a router that actually receives security updates
Understand what “opening a port” really means
Learn safer alternatives
- VPN access
- Zero-trust tunnels
- Reverse proxies with proper auth
Do not run this on your primary personal network

Convenience without boundaries is how incidents are born.

The bigger lesson

Every new wave of tech brings a gold rush.

And every gold rush brings shortcuts.

Agentic AI is powerful.

But power without discipline doesn’t create productivity—it creates exposure.

The risk isn’t Clawd.bot.

It’s choosing convenience over fundamentals.

And fundamentals always collect their debt.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #SMBrisk #dataprotection #AIsecurity

Cybersecurity

Technology

The AI assistant everyone wants and why we need to slow down

February 8, 2026

•

20 min read

When AI Can Act, Mistakes Become Incidents

What Clawd.bot actually is (and why it turns heads)

Clawd.bot—sometimes called Clawdbot—is part of a fast-emerging class of agentic, self-hosted AI systems. Unlike ChatGPT or other cloud AIs that suggest, Clawd.bot is designed to do.

Once installed locally, it can:

Read and send emails
Manage calendars
Interact with files and folders
Execute shell commands and scripts
Control browsers
Respond to messages via WhatsApp, Telegram, Slack, and more

All from natural-language chat commands.

In other words, it’s not an assistant.

It’s a hands-on operator living inside your machine.

That’s the magic—and the danger.

How it works under the hood

At a high level, Clawd.bot combines four powerful components:

Local LLM or API-backed brain
It interprets your chat commands and converts intent into actions.
Action adapters (tools)
These are connectors that map AI decisions to real capabilities:
- Email APIs
- Calendar services
- Browser automation
- Shell execution
- File system access
Messaging interface
Commands arrive through chat platforms you already trust:
- Slack
- Telegram
- WhatsApp
Persistent execution context
The agent remembers state, history, and goals—so actions compound over time.

This is why it feels so powerful.

You’re effectively texting your operating system.

Real examples of what people use it for

Supporters love demos like:

“Clean my inbox and respond to anything urgent.”
“Pull yesterday’s logs and summarize errors.”
“Schedule meetings with everyone who replied ‘yes.’”
“Deploy this script and alert me if it fails.”

In productivity terms, it’s intoxicating.

In security terms, it’s explosive.

Why the risk profile is fundamentally different

Traditional AI mistakes are output problems.

Agentic AI mistakes are execution problems.

Here’s where things get dangerous:

Prompt injection
A malicious message, email, or chat input can manipulate the agent’s behavior.
Social engineering amplification
Attackers don’t need credentials—just the right words.
Privilege escalation by design
The tool works because it has deep access. That access is the risk.
No human-in-the-loop by default
Once trusted, actions happen fast and quietly.

When AI has write and execute permissions, the attack surface expands from “data exposure” to system compromise.

A realistic threat scenario

Imagine:

A phishing email arrives
The AI reads it while “cleaning inbox”
The message contains subtle instruction-like phrasing
The agent interprets it as a task
A script runs, credentials are exfiltrated, or files are modified

No malware popup.

No suspicious download.

Just authorized automation doing the wrong thing.

That’s a nightmare for incident response.

How Clawd.bot is typically set up (and why that matters)

Most setups involve:

Installing the agent on your local machine or server
Granting OS-level permissions (files, shell, browser)
Connecting messaging platforms via tokens
Linking email and calendar APIs
Running it persistently in the background

From a cybersecurity standpoint, this is equivalent to deploying a headless admin user controlled by text input.

That demands enterprise-grade controls—yet most users are running it like a side project.

Safer ways to experiment (if you insist)

If you’re exploring tools like this, do not treat them like normal apps.

Minimum safety guidance:

Never install on your primary workstation
Use a dedicated VM or isolated machine
Restrict file system scope aggressively
Disable shell execution unless absolutely required
Require manual approval for high-risk actions
Monitor logs like you would a privileged service account

Think sandbox, not assistant.

Why SMBs, healthcare, law firms, and schools should pause

This category of AI is especially risky for:

SMBs with limited security oversight
Healthcare environments with sensitive systems
Law firms handling privileged data
Schools with mixed-trust user populations

Autonomous tools don’t fail gracefully.

They fail at scale.

The bigger takeaway

Agentic AI is the future—but we’re early, messy, and under-secured.

Right now, tools like Clawd.bot are the wild west: powerful, exciting, and dangerously easy to misuse.

Innovation isn’t the enemy.

Unbounded autonomy without safeguards is.

Before letting AI act for you, ask the same question you’d ask of a human admin:

Do I trust this system with the keys—when I’m not watching?

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #SMBrisk #dataprotection #AIsecurity

Technology

Science

Must-Read

A radical energy idea leaves Earth entirely

February 1, 2026

•

20 min read

The Sun Never Sets on This Power Plant

A radical energy idea leaves Earth entirely

Imagine a power station that never sleeps, never faces storms, and never loses daylight.

That’s the vision behind a newly publicized plan from China: a kilometer-wide solar power station in orbit, designed to collect uninterrupted sunlight 24/7 and beam that energy back to Earth.

Unlike ground-based solar farms, this system would operate above clouds, weather, and nightfall, harvesting solar energy at intensities impossible on the surface.

If realized, advocates claim a single structure of this scale could one day rival the entire global oil industry in energy output.

That’s not incremental change.

That’s a complete reframing of renewable energy.

How space-based solar power would actually work

The concept isn’t science fiction—it’s physics and engineering pushed to extremes.

The system would:

Capture continuous solar radiation in orbit
Convert that energy into microwaves or laser beams
Transmit power wirelessly to ground-based receiving stations
Convert it back into usable electricity

Because there’s no atmospheric loss, no nighttime downtime, and no weather interference, efficiency gains could be enormous.

In theory, one orbital array could outperform thousands of terrestrial solar installations.

Why this idea is suddenly getting serious attention

Space-based solar power has been discussed for decades, but only now is it being treated as plausible due to:

Falling launch costs
Advances in robotics and autonomous assembly
Improvements in wireless power transmission
Growing pressure to decarbonize at scale

For nations thinking in generational infrastructure terms, this isn’t about next year—it’s about energy dominance for the next century.

The engineering problems no one can ignore

This is where reality hits hard.

Engineers face enormous challenges:

Launching and assembling kilometer-scale structures in orbit
Managing extreme thermal stress and radiation exposure
Maintaining precise beam alignment to Earth-based receivers
Preventing interference, safety risks, or misuse of high-energy transmission

The cost alone is staggering, even before considering geopolitical, regulatory, and security implications.

A system capable of beaming massive energy to Earth is also a system that demands absolute trust, control, and safeguards.

Why this matters beyond the energy sector

This isn’t just an environmental story.

SMBs depend on stable, affordable energy for digital infrastructure
Healthcare systems are energy-intensive and uptime-critical
Law firms and regulators will shape liability, safety, and governance frameworks
Schools and research institutions will train the next wave of engineers and policymakers

Space-based energy would reshape not just power grids, but economics, national security, and global dependence.

The bigger question no one is answering yet

This idea promises clean, constant energy at a planetary scale.

But it also introduces:

Centralized control of enormous power resources
New attack surfaces and failure modes
Ethical and geopolitical risks unlike anything we’ve managed before

It’s the cleanest energy concept imaginable—and potentially the most complex to trust.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #SMBrisk #dataprotection #futuretech

Technology

Cybersecurity

Must-Read

The First Crack in Big Tech’s Addiction Defense

January 29, 2026

•

20 min read

The First Crack in Big Tech’s Addiction Defense

TikTok exits—just before the verdict mattered

Just days before jury selection, TikTok agreed to settle a landmark lawsuit alleging its platform deliberately addicted and harmed children. The case was set to be the first jury trial testing whether social media companies can be held liable for intentional addictive product design, not just user-generated content.

The settlement details weren’t disclosed—but the timing speaks volumes.

The trial will now move forward against Meta (Instagram) and YouTube, with senior executives, including Mark Zuckerberg, expected to testify.

Why this case is different from everything before it

This lawsuit isn’t arguing that harmful content exists.

It argues that the platforms themselves were engineered to addict children.

Plaintiffs claim features such as:

Infinite scroll
Algorithmic reinforcement loops
Variable reward mechanics
Engagement-maximizing notifications

were borrowed directly from gambling and tobacco playbooks to keep minors engaged longer—driving advertising revenue at the expense of mental health.

If juries accept that framing, it could sidestep Section 230 and First Amendment defenses that have protected tech companies for decades.

That’s the real threat.

A bellwether moment with national implications

The plaintiff, identified as “KGM,” alleges early social media use fueled addiction, depression, and suicidal ideation. Her case was selected as a bellwether trial—a legal test meant to forecast outcomes for hundreds of similar lawsuits already filed by parents and school districts across the U.S.

TikTok’s decision to settle before opening arguments signals one thing clearly:

The risk of a jury verdict was too high.

Echoes of Big Tobacco—and why that comparison matters

Legal experts are drawing direct parallels to the 1990s tobacco litigation that ended with a historic settlement forcing cigarette companies to:

Pay billions in healthcare costs
Restrict youth marketing
Accept public accountability

If social media companies are found to have intentionally targeted minors through addictive design, similar remedies could follow—regulation, oversight, and structural changes to core product mechanics.

This isn’t about moderation.

It’s about product liability.

What tech companies are arguing back

The defendants strongly deny the claims, pointing to:

Parental controls
Screen-time limits
Safety and wellness tools
The complexity of teen mental health

Meta argues that blaming social media alone oversimplifies a multifaceted issue involving academics, socio-economic stress, school safety, and substance use.

That defense may resonate with experts—but juries decide narratives, not white papers.

Why SMBs, healthcare, law firms, and schools must pay attention

This case goes far beyond social media.

SMBs rely on engagement-driven platforms that may soon face design restrictions
Healthcare organizations already manage the fallout of youth mental health crises
Law firms are watching liability theory evolve in real time
Schools are increasingly pulled into litigation over digital harm

More broadly, it signals a shift:

Software design itself is becoming a legal and risk-management issue.

The real takeaway

TikTok didn’t settle because it lost.

It settled because the jury risk was existential.

Once a company settles a case like this, it weakens the industry-wide narrative that “no harm can be proven.” That changes leverage in every case that follows.

This isn’t the end of social media.

But it may be the end of unchecked engagement-at-all-costs design.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #SMBrisk #dataprotection #technologylaw