8776363957
Connect with us:
LinkedIn link
Facebook link
Twitter link
YouTube link
Gigabit Systems logo
Link to home
Who We AreManaged ServicesCybersecurityOur ProcessContact UsPartners
The Latest News in IT and Cybersecurity

News

A cloud made of diagonal linesA cloud made of diagonal lines
A pattern of hexagons to resemble a network.
Mobile-Arena
Technology
Cybersecurity

Your Carrier Isn’t Protecting You

November 26, 2025
•
20 min read

Your Carrier Isn’t Protecting You

The FCC Just Removed One of the Only Rules Forcing Telecoms to Strengthen Security

In January 2025, after the Chinese state-backed group Salt Typhoon breached at least eight U.S. telecom providers — including AT&T, Verizon, and T-Mobile — the FCC invoked Section 105 of CALEA to push carriers into urgently hardening their networks. The rule created accountability, penalties, and regulatory pressure for long-neglected security gaps.

Now the FCC has rescinded that ruling.

The agency says the original order was flawed, overly broad, and outside its authority. But removing it leaves millions of Americans exposed to the same weaknesses Salt Typhoon exploited — weaknesses the telecom industry has repeatedly failed to address voluntarily.

And for SMBs, healthcare organizations, law firms, and schools, this decision has real, immediate cybersecurity consequences.

What the FCC’s Reversal Actually Means

FCC Chair Brendan Carr announced that carriers had already agreed to strengthen their networks and accelerate patching — but acknowledged the January order was fundamentally “unlawful and ineffective.”

Repealing it means:

  • No enforceable requirement for carriers to improve cybersecurity

  • No penalties if they ignore vulnerabilities

  • No regulatory mandate for threat hunting, segmentation, access control, or outbound connection restrictions

  • No accountability for failures affecting hundreds of millions of Americans

This is especially concerning given carriers’ history:

  • T-Mobile ignored SIM-swap threats for years

  • AT&T, Verizon, and T-Mobile were fined for illegally sharing customer location data

  • Multiple carriers have experienced supply-chain breaches, metadata theft, and insider abuse

The track record is not reassuring.

Why Customers Should Be Worried

Salt Typhoon didn’t just hack a few accounts.

They compromised core wireless infrastructure.

From inside the networks, attackers quietly collected:

  • Account credentials

  • Sensitive customer records

  • Wireless metadata

  • Location traces

  • Over-the-air information most people assume is protected

They operated for months before detection — inside the systems the entire country relies on for communication.

And experts warn that Salt Typhoon’s campaigns are still active today.

The FCC’s rollback removes the only rule directly aimed at preventing this from happening again.

Why This Matters for SMBs, Healthcare, Law Firms, and Schools

Your organization relies on carrier networks for:

  • MFA codes

  • Email access

  • Remote work

  • VoIP calls

  • Patient or client communication

  • Critical alerts

  • Cloud-service connectivity

If carriers fail to secure their infrastructure, your organization is exposed — even if your internal cybersecurity posture is strong.

When the network itself is compromised:

  • SMS-based MFA can be intercepted

  • Voicemail can be hijacked

  • Metadata can be harvested

  • Traffic analysis can map your operations

  • Account recovery workflows can be manipulated

This is the kind of systemic risk that bypasses traditional defenses.

What You Should Do Right Now

1. Stop using SMS for MFA

Use:

  • Authenticator apps

  • Passkeys

  • Hardware security keys

Telecom carriers cannot protect your authentication.

2. Encrypt everything

Use encrypted apps for sensitive communication — organizations must assume carrier networks are not trustworthy.

3. Enforce strong password management

A password manager greatly reduces the impact of metadata leaks and credential exposure.

4. Deploy VPN usage policies

A VPN won’t block a telecom breach, but it reduces metadata visibility and hardens traffic against passive collection.

5. Conduct incident-impact assessments

If Salt Typhoon had access to your carrier during the breach windows, assume exposure.

6. Reevaluate business continuity plans

Carrier outages, metadata leaks, and SIM-swap escalation must now be considered part of your organizational threat model.

Telecom security failures are not abstract.

When infrastructure falls, everyone falls with it.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #MSP #dataprotection #SMBsecurity

Mobile-Arena
Technology
Cybersecurity
News
Must-Read

Your Social Media is an Intelligence Nightmare

November 26, 2025
•
20 min read

Your Social Media is an Intelligence Nightmare

The IDF Turns to AI After Hamas Mined Soldiers’ Social Media

The IDF is deploying a new AI-powered system, Morpheus, to scan public social media posts of active soldiers after investigations revealed that Hamas gathered intelligence for the October 7 attacks using photos, videos, and casual posts shared online.

This is not hypothetical.

It’s a proof point that public data is battlefield intelligence — and the same principle endangers SMBs, healthcare organizations, law firms, and schools every day.

What Morpheus Actually Does

Beginning next month, Morpheus will continuously analyze public social media accounts of soldiers and automatically flag sensitive content, including:

  • Base entrances, guard rotations

  • Geolocation tags

  • Operational equipment

  • Classified weapons systems

  • Personal routines or schedules

If a soldier posts something risky:

  • The system alerts them automatically

  • Commanders may call to order immediate removal

  • Repeat violations escalate to disciplinary review

In its pilot phase, Morpheus scanned 45,000 soldiers’ profiles and flagged thousands of problematic posts — a scale no human team could ever match.

Why This Matters Far Beyond the Military

The lesson is universal:

Adversaries use publicly available data to plan attacks.

That includes attackers targeting:

  • SMB executives

  • Healthcare workers

  • Legal staff

  • School administrators

  • Critical infrastructure teams

Every organization has employees posting details they don’t consider sensitive — until an attacker uses them.

Examples include:

  • Office locations

  • Badge photos

  • Equipment serial numbers

  • Cloud vendor screenshots

  • Client meetings

  • Travel schedules

  • ID badges visible in selfies

Attackers don’t need classified intelligence.

They need carelessness.

The Cybersecurity Risk Hidden in Everyday Posts

1. Geotagged content reveals patterns

Posts outside your office, data center, school, or facility can map your environment.

2. Uniforms and equipment leak operational details

Even blurred items can be enhanced or cross-referenced.

3. Social graphs reveal organizational roles

Attackers use public connections to identify targets for spear phishing.

4. Photos show devices, platforms, and security controls

Visible screens, badges, or access points are reconnaissance gold.

5. AI tools can now analyze millions of posts instantly

What used to require human analysts can now be automated at nation-state speed.

What Organizations Must Do Now

1. Implement a Social Media Security Policy

Define what employees can and cannot post — especially those with elevated access.

2. Train staff on “digital operational security”

Employees must understand that the threat actor doesn’t need to hack them — they only need to observe them.

3. Conduct regular OSINT audits

Review what adversaries can gather from public data.

Most organizations are shocked by what’s already out there.

4. Protect high-risk roles

Executives, IT staff, healthcare clinicians, and legal professionals should undergo enhanced OSINT reviews.

5. Balance privacy with monitoring

Just as the IDF restricts scanning to public accounts, organizations should define exact boundaries for what is monitored.

Public data is no longer harmless.

If the IDF sees it as a threat vector, your organization should too.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #MSP #managedIT #dataprotection #SMBsecurity

AI
Must-Read
Technology
Tips

Your Focus Is Under Attack

November 27, 2025
•
20 min read

Your Focus Is Under Attack

Short-Form Content Is Quietly Rewiring the Modern Brain

A new meta-study from Griffith University analyzed 71 surveys covering more than 98,000 people and revealed a severe, accelerating trend: short-form video is degrading human attention spans across every age group — not just teens.

For SMBs, healthcare organizations, law firms, and schools, this isn’t a cultural issue.

It’s a cognitive risk, a workforce efficiency risk, and increasingly a cybersecurity risk driven by distraction.

Attention is now an enterprise vulnerability.

What the Research Shows

Griffith’s analysis confirms a consistent pattern across all platforms — TikTok, Instagram Reels, YouTube Shorts, Facebook videos, and more:

  • Diminished sustained attention

  • Reduced inhibition control

  • Lower tolerance for “boredom gaps”

  • Increased compulsive scrolling behavior

Psychologist Jonathan Haidt describes this as global destruction of the ability to pay attention — affecting everyone, from Gen Z to Boomers.

This is not just a youth problem.

It’s a human problem.

Real-World Impact Across Generations

Younger adults

Students report compulsive checking every few minutes — even during classes, meals, and conversations. Many struggle to complete readings or follow lectures without reaching for their phones.

Middle-aged adults

Professionals who previously excelled in deep work now find themselves unable to watch a movie, finish a task, or read a book without interruption.

Older adults

Parents and retirees are becoming heavy social-media consumers, often spending hours per day absorbed in algorithmically-optimized feeds they don’t realize are engineered for compulsion.

This cognitive erosion is universal.

Why This Matters for Organizations

Short-form platforms are designed to erode attention — and that erosion directly impacts:

1. Workplace performance

Employees conditioned by rapid micro-stimulation struggle with:

  • Deep focus

  • Long tasks

  • Reading comprehension

  • Project execution

  • Prolonged meetings and trainings

A distracted workforce is a less productive workforce.

2. Security posture

Cybercriminals exploit distraction.

Workers who can’t sustain attention are more likely to:

  • Miss phishing red flags

  • Approve malicious MFA prompts

  • Fall for social-engineering traps

  • Ignore URL anomalies

  • Rush through compliance prompts

Distraction is now a cyber threat multiplier.

3. Academic and learning environments

Schools report that students “can’t sit still,” “can’t keep thoughts inside their heads,” and “struggle to read anything longer than a paragraph.”

If learners can’t maintain attention, instruction breaks down.

Why Short-Form Content Is So Neurologically Harmful

Researchers point to a process called habituation:

Repeated exposure to fast, high-stimulation content desensitizes the brain.

Everything slower — reading, problem-solving, deep thinking — feels harder.

The more short-form content someone consumes, the more their brain becomes conditioned to reject anything requiring sustained effort.

How Leaders Can Respond

1. Implement digital-wellness norms

Encourage structured work blocks, reduced notifications, and device-free meeting zones.

2. Build training around micro-attention challenges

Shorter modules, more interactive elements, and layered review cycles help counteract cognitive decline.

3. Reinforce cybersecurity awareness

Teach staff that distraction increases risk.

Simulate real-world social-engineering scenarios to build mindful habits.

4. Promote reading and deep-work culture

Policies that protect deep focus time measurably reduce error rates and improve productivity.

5. Treat attention as a strategic resource

Attention is no longer personal — it’s operational.

The platforms are evolving faster than our brains can defend themselves.

Protecting attention is protecting capability.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #managedIT #MSP #dataprotection #SMBsecurity

Mobile-Arena
Technology
Cybersecurity

Your Phone Number Is A Powerful Skeleton Key

November 25, 2025
•
20 min read

Your Phone Number Is A Powerful Skeleton Key

SIM-Swap Attacks Are Surging — and One Victim Shows How Fast Everything Can Collapse

Sue thought she was dealing with a routine network issue. Instead, scammers had convinced her mobile provider to hand over control of her phone number — triggering a full SIM-swap compromise that cascaded into stolen accounts, bank lockouts, fraudulent credit-card applications, and more than £3,000 in purchases made in her name.

What happened to her is not rare.

It’s becoming the dominant attack pattern in a world where mass data breaches fuel hyper-targeted scams.

The danger for SMBs, healthcare organizations, law firms, and schools is simple: SIM-swap attacks bypass every layer of your security the moment an attacker controls your mobile number.

How Criminals Stole Sue’s Digital Life

Sue’s attackers didn’t guess passwords.

They didn’t break into her phone.

They broke into her identity.

Step 1 — Data breach exposure

Her email, phone number, date of birth, and address were found in previous breaches at:

  • PaddyPower (2010)

  • Verifications.io (2019)

  • Additional aggregated breach collections

This gave attackers everything they needed to impersonate her convincingly.

Step 2 — SIM-swap execution

Scammers contacted her mobile carrier pretending to be her and convinced them to issue a new SIM card — transferring all call and SMS traffic to the attacker’s device.

Now every security code, login prompt, MFA challenge, and password reset belonged to the criminals.

Step 3 — Total account takeover

With SMS-based MFA defeated, the attackers:

  • Reset her Gmail password

  • Locked her out of online banking

  • Opened a credit card in her name

  • Made thousands of pounds in fraudulent purchases

  • Hijacked her WhatsApp

  • Sent disturbing messages to her hobby groups

This was identity theft, financial fraud, and psychological warfare executed through one weak link: her phone number.

Why This Is a Growing Threat for Organizations

1. SMS-based MFA is no longer safe

Attackers don’t need your device — they only need your carrier to believe their story. Once a SIM swap happens, SMS authentication collapses instantly.

2. Breach data powers precision phishing

Every employee with exposed personal info becomes easier to impersonate.

Attackers link private breach data with public records and launch targeted spear-phishing at scale.

3. Business accounts fall quickly

Once a personal email or phone is compromised, attackers pivot into:

  • Microsoft 365

  • Google Workspace

  • Banking portals

  • Payroll systems

  • Facebook/Meta business accounts

  • HR platforms

Even organizations with strong policies can crumble if one staff member’s MFA is tied to SMS.

4. Recovery drains resources

Sue needed multiple in-person visits to banks and carriers.

Imagine an employee losing access to business systems for even 24 hours — the operational impact is immediate.

How to Protect Your Organization from SIM-Swap Attacks

1. Eliminate SMS authentication wherever possible

Move to:

  • Authenticator apps

  • Hardware keys (YubiKey)

  • Passkeys

These cannot be stolen through SIM swaps.

2. Put a carrier PIN on every employee line

All major carriers allow an account lock with a custom passcode.

Without it, anyone can impersonate a user.

3. Train staff on breach awareness

Your team must assume their data has already been leaked.

Employees who treat breach data casually are prime targets.

4. Use identity alerts and dark web monitoring

Monitor employee emails for exposure.

If data is found, require immediate MFA resets and password rotation.

5. For critical accounts — enforce phishing-resistant MFA

Legal, financial, healthcare, and executive accounts should never rely on SMS at any stage.

SIM-Swap attacks exploit trust.

The carrier trusts the caller.

The bank trusts the text message.

The system trusts the phone number.

And attackers weaponize all three.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #MSP #managedIT #SMBsecurity #dataprotection

Science
Technology
News
AI

The New Space Race

December 2, 2025
•
20 min read

The New Space Race

Amazon Takes Aim at Starlink — and Your Connectivity Strategy

Amazon just rebranded Project Kuiper as Amazon Leo, and it’s officially opening the doors for businesses to test its low-Earth-orbit internet service. With more than 150 satellites already deployed — and a planned constellation of 3,236 — Amazon is positioning itself as the first serious challenger to Starlink’s near-total dominance, powered by nearly 9,000 active satellites.

This isn’t just a space story.

It’s a connectivity, security, and resilience story that will impact SMBs, healthcare, schools, and law firms.

What Amazon Leo Actually Means

  • Enterprise testing has begun: Amazon is quietly onboarding business users to evaluate speed, stability, and latency.

  • New branding, new strategy: Kuiper’s new identity — Amazon Leo — is designed to signal a commercial-grade LEO network ready for market adoption.

  • Launch partnerships: Satellites have gone up via ULA… and even SpaceX — yes, Starlink’s parent company.

  • Constellation scale: 3,236 planned satellites vs. Starlink’s 9,000+ already in orbit.

This is the first time Starlink has faced a competitor with Amazon’s resources, logistics footprint, and enterprise relationships.

Why IT & Cybersecurity Leaders Should Care

1. Multi-path redundancy becomes accessible

SMBs and schools traditionally rely on one ISP.

A LEO satellite link provides:

  • Backup connectivity

  • Failover for outages

  • Remote-site coverage

  • Higher resilience during cyberattacks or fiber cuts

Outages become disruptions — not disasters.

2. New security models required

Satellite internet introduces:

  • New authentication layers

  • Additional encryption demands

  • Ground-station dependencies

  • Vendor-specific firmware risks

A second LEO provider means new firmware, new routers, new attack surfaces.

Starlink already had vulnerabilities disclosed; Amazon Leo will face the same scrutiny.

3. The privacy landscape shifts

Two major LEO providers = two massive data pipelines.

Organizations need policy updates covering:

  • Remote access

  • Telehealth

  • Off-site legal work

  • Cloud connectivity over satellite links

If your industry is regulated, satellite routing must be included in compliance documentation.

4. Competition drives price compression

Starlink has held pricing power for years.

Amazon entering this arena means:

  • More affordable backup connectivity

  • Enterprise-friendly SLAs

  • Lower equipment costs

  • Potential integration with AWS edge services

This is especially impactful for rural schools, clinics, and field operations.

The Bottom Line

The LEO satellite market is no longer a one-horse race.

As Amazon Leo comes online, organizations must update their risk assessments, business continuity plans, and network strategies to account for multi-orbit connectivity.

Redundancy is no longer a luxury — it’s an expectation.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #MSP #managedIT #SMBsecurity #dataprotection

Technology
News
Cybersecurity
Must-Read

Your Eyes Can’t See This Threat

November 25, 2025
•
20 min read

Your Eyes Can’t See This Threat

Hackers Are Swapping Letters to Steal Microsoft Credentials — And It’s Working

A sophisticated phishing campaign is exploiting one of the oldest human vulnerabilities: the brain’s tendency to autocorrect what it sees. Attackers are registering fake domains like rnicrosoft(.)com — swapping the letter m with the characters r + n. On many screens, especially mobile, the difference is almost invisible.

This is typosquatting at its most dangerous.

And for SMBs, healthcare, law firms, and schools, this attack vector is a direct line into email accounts, vendor portals, HR systems, and cloud environments.

How the Attack Works

Hackers send emails that look exactly like legitimate Microsoft notices — same colors, same layout, same tone. But the domain isn’t microsoft.com.

It’s rnicrosoft.com.

The kerning between “r” and “n” forms a shape that resembles “m,” tricking the eye and slipping past rushed employees. Once someone clicks, attackers launch:

  • Credential phishing

  • Vendor invoice fraud

  • HR impersonation

  • Remote access malware drops

These campaigns are especially effective on mobile devices, where:

  • URLs are truncated

  • Font spacing is tighter

  • Visual differences nearly disappear

This is visual deception engineered for speed and scale.

Why This Matters for Your Organization

1. Attackers know your staff moves fast

Most employees skim emails, especially Microsoft alerts. Typosquatting exploits that reflex.

2. Mobile workflows increase exposure

Teachers, nurses, caseworkers, attorneys, and field staff read email on the go. Mobile previews hide full domains — the perfect storm for homoglyph attacks.

3. Automated filters won’t catch everything

These domains are technically “valid.” Without user awareness, even strong defenses crumble.

4. One stolen login becomes a full compromise

From an inbox, attackers can pivot into:

  • OneDrive

  • SharePoint

  • Teams

  • EHR platforms

  • Legal management systems

  • School administrative portals

Many ransomware events start from a single stolen credential.

How to Defend Against Typosquatting

Every organization must train staff to perform these checks:

✔ Expand the full sender address

Don’t rely on display names like “Microsoft Support.”

✔ Hover over links (or long-press on mobile)

This exposes the true destination URL before you click.

✔ Inspect the “Reply-To” field

Attackers often route replies to unrelated inboxes.

✔ Never reset passwords through email links

Open a new browser tab and go directly to the real site.

✔ Rehearse these scenarios

Simulated phishing drills help teams recognize homoglyph tricks in real time.

Common Variations Attackers Use

  • rnicrosoft(.)com — “rn” to mimic “m”

  • micros0ft(.)com — zero instead of “o”

  • microsoft-support(.)com — fake “support” subdomains

  • microsoft(.)co — TLD switching

Attackers count on the fact that your brain will fill in the gaps.

Your defense starts with awareness.

If your team can’t detect visual deception, your network becomes an open door.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #MSP #managedIT #dataprotection #SMBsecurity

Cybersecurity
Technology
Must-Read

Breach Beneath the Surface

November 27, 2025
•
20 min read

Breach Beneath the Surface

⸻

The Vendor Breach Wall Street Didn’t See Coming

A major cyber incident just hit SitusAMC, a real-estate data and loan-processing firm used by nearly every major Wall Street bank — including JPMorgan Chase and Citi. Hackers stole account records, legal agreements, and other sensitive client data, triggering an industry-wide scramble to understand what was taken and who’s exposed.

This is the part no one likes to admit:

The financial sector wasn’t breached — its vendor was.

And that’s exactly why this story matters for SMBs, healthcare, law firms, and schools.

Your cybersecurity is only as strong as the vendor sitting two layers beneath you.

⸻

What Actually Happened

SitusAMC detected unauthorized access on November 12.

Within days, they notified customers that their data may have been accessed. No encryption malware, no ransomware detonation — meaning this looks like a pure data exfiltration operation.

Key points:

• Data taken includes account records and legal agreements

• At least 1,500 clients rely on SitusAMC

• JPMorgan and Citi received alerts but aren’t confirming exposure

• The FBI is investigating

• Services were restored, but the impact is still unknown

This wasn’t just a breach — it was a breach of a critical node in the financial ecosystem.

⸻

Why This Should Terrify Every Organization

The attack didn’t hit a bank directly.

It targeted the infrastructure that banks depend on.

This is the cybersecurity blind spot most organizations ignore.

1. Your biggest risk is the vendor you’ve never heard of

SitusAMC powers underwriting systems, mortgage operations, and real-estate loan servicing across the U.S. A compromise at this level means exposure spreads instantly across:

• Banking

• Lending

• Real-estate finance

• Institutional investors

• Insurance

Your business has the same hidden dependencies — payroll systems, file-storage vendors, scheduling platforms, HR tools, CRMs, and cloud service partners.

2. Supply-chain breaches bypass your strongest defenses

Big banks spend hundreds of millions on cybersecurity annually.

But the attacker didn’t bother with the fortresses.

They walked through a side door left open by a vendor.

SMBs and schools rely on dozens of SaaS providers. Each one:

• Holds sensitive data

• Connects to your systems

• Expands your attack surface

And most organizations never audit them.

3. Legal exposure becomes a nightmare

Because the breach involves legal agreements and account records, institutions now face:

• Contractual exposure

• Privacy-law reporting requirements

• Investigations into whether data was co-mingled

• Financial liability if loan files were accessed

Imagine what that would mean for a law firm or healthcare provider.

⸻

What Every SMB, School, and Law Firm Must Do Today

Vendor risk management is no longer optional.

Implement these controls immediately:

✔ 1. Complete a vendor inventory

Identify every third-party platform that touches your data — even obscure tools employees signed up for years ago.

✔ 2. Demand breach transparency

Your vendor contracts should include:

• Mandatory 72-hour breach notifications

• Proof of security controls

• SOC 2 or ISO 27001 reporting

• Right-to-audit clauses

✔ 3. Enforce segmentation

Vendors should never have unrestricted access across your network.

✔ 4. Monitor for abnormal access patterns

Early detection prevents silent data exfiltration — exactly what happened here.

✔ 5. Create a vendor-offboarding process

Many breaches occur from residual access left behind by old vendors.

⸻

The Lesson

A single overlooked vendor can compromise an entire industry.

If Wall Street can get blindsided, anyone can.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #MSP #managedIT #SMBsecurity #dataprotection

⸻

AI
Technology
Cybersecurity

Your Data shouldn’t be Free Fuel

November 25, 2025
•
20 min read

Your Data Isn’t Free Fuel

LinkedIn Quietly Enabled AI Training — Here’s What You Must Disable Now

LinkedIn is rolling out a new setting that allows the platform to use your posts, interactions, and profile data to train its AI models. Most users won’t notice it. Most won’t change it. And that’s exactly how privacy erosion happens.

But here’s the good news:

You can turn it off in less than 30 seconds.

For SMBs, law firms, healthcare organizations, and schools, this matters. Professional networks hold sensitive data — client anecdotes, hiring plans, internal milestones, even compliance-related discussions. If employees leave this setting on, your organization’s footprint becomes AI training material.

Why This Matters for Cybersecurity

1. Corporate exposure grows silently

Employee activity on LinkedIn can inadvertently reveal:

  • Vendor relationships

  • Contract details

  • Leadership changes

  • Security stack hints

  • Investigations or litigation cues

AI models trained on that data make patterns easier to detect — including patterns attackers exploit.

2. Regulated industries face higher stakes

Healthcare staff, attorneys, educators, and financial professionals discuss work online more than they realize.

If that content is ingested into an AI model, even in aggregate, it can create:

  • HIPAA exposure

  • FERPA risks

  • Confidentiality breaches

  • Compliance failures

A single overlooked setting can create institutional liability.

3. Social engineering becomes stronger

Attackers can generate hyper-accurate impersonations when training data includes your phrasing, your work details, your network, your behavior patterns.

Turning off AI training reduces that footprint.

How to Turn Off LinkedIn’s AI Training Setting

Follow these steps:

  1. Tap your profile avatar (top right).

  2. Select Settings & Privacy.

  3. Open Data Privacy.

  4. Find Data for Generative AI Improvement.

  5. Toggle it OFF.

That’s it — you’ve stopped LinkedIn from using your content to fuel its AI models.

Roll this change out to your teams. Add it to onboarding. Add it to offboarding. Add it to quarterly privacy reviews.

Privacy isn’t automatic. It’s configured.

The platforms won’t protect you by default — they protect themselves.

Your organization’s security depends on closing the quiet gaps before attackers exploit them.

70% of all cyber attacks target small businesses, I can help protect yours.

#cybersecurity #MSP #managedIT #dataprotection #SMBsecurity

AI
News
Technology

Counterfeit Crackdown: Walmart’s Quietest Smart Move Yet

•
20 min read

Counterfeit Crackdown: Walmart’s Quietest Smart Move Yet

What’s happening

Walmart is reportedly in talks to acquire R&A Data, an Israeli-founded startup that uses AI to scan and flag risky marketplace listings (counterfeits, unsafe goods, compliance issues). Multiple outlets say R&A has already been vetting Walmart’s third-party listings since 2024; taking it in-house would scale those controls as Walmart’s marketplace keeps surging.

This follows months of scrutiny on counterfeit risks across Walmart’s marketplace and the broader arms race to police third-party sellers at Amazon-level scale.

Why it matters (security + business)

  • Trust is revenue: Marketplaces live or die by buyer trust. Embedding R&A’s AI directly into Walmart’s pipeline could shorten takedown cycles and cut brand-protection costs.

  • Compliance at scale: Hundreds of millions of listings demand continuous monitoring (onboarding + ongoing). Automated signals (seller identity, product images, ingredient labels, price anomalies) feed human review to stop fakes before checkout.

  • Playbook vs. Amazon: Owning the tooling (rather than renting it) helps Walmart tune models to its unique risk patterns and push faster policy iterations.

Practical takeaways for SMBs, healthcare, law firms, and schools

  1. Scrutinize marketplace sourcing: Require lot numbers, chain-of-custody docs, and manufacturer authorization—especially for PPE, lab supplies, ed-tech devices, beauty/OTC, and anything ingested or applied.

  2. Automate inbound checks: Use receipt-side scanning (barcodes, images, OCR) to flag mismatched SKUs/packaging before inventory hits users or patients.

  3. Contract for authenticity: Add indemnification + counterfeit warranties to vendor agreements; specify sampling/testing cadence and immediate RMA on failure.

  4. Watch model drift: If a vendor claims “AI detection,” ask about precision/recall, false-positive handling, and human-in-the-loop thresholds—then audit quarterly.

  5. Incident workflow: Pre-write your counterfeit response SOP (notify users/patients, quarantine SKUs, legal template, regulator notice if applicable).

What to watch next

  • Deal terms & integration speed: Will R&A’s tech gatekeep listing creation or run as post-publish sweeps? (Big trust impact.)

  • Signal sharing with brands: Deeper APIs with brand owners = faster counterfeit attribution and takedowns.

  • Broader retail copycats: Expect rivals to buy or build similar AI pipelines.

Bottom line: If you buy critical goods from marketplaces, assume “trust, but verify” — and make verification measurable.

70% of all cyber attacks target small businesses, I can help protect yours.

#MSP #cybersecurity #managedIT #dataprotection #SMB

Previous
Next
About
Managed ServicesCybersecurityOur ProcessWho We AreNewsPrivacy PolicyTerms & Conditions
Help
FAQsContact UsSubmit a Support Ticket
Social
LinkedIn link
Twitter link
Facebook link
Have a Question?
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Copyright © {auto update year} Gigabit Systems All Rights Reserved.
Website by Klarity
Gigabit Systems Inc. BBB Business Review