News - IT and Cybersecurity Insights

Crypto

Technology

Cybersecurity

Crypto Isn’t Just Digital. It’s Guarded Like Gold.

April 5, 2026

•

20 min read

Crypto Isn’t Just Digital. It’s Guarded Like Gold.

Most people think cryptocurrency exists only in cyberspace.

But some of Europe’s most valuable digital assets are stored inside a physical bunker in Madrid.

No internet connection.

Offline private keys.

Biometric access controls.

Multiple physical security layers.

Because when it comes to protecting billions in digital assets, security cannot exist only in software.

Why Crypto Custody Is Physical

Institutional crypto custody providers are increasingly turning to cold storage vaults to protect private keys.

One example is Prosegur Crypto, the digital asset custody arm of Prosegur.

Their infrastructure includes hardened facilities in:

• Spain

• Brazil

• Argentina

• Andorra

These sites function much more like bank vaults than data centers.

Keys are generated and stored completely offline, often inside hardened bunkers designed to withstand both cyber and physical threats.

Why Offline Storage Matters

In cryptocurrency, ownership is controlled entirely by private keys.

Whoever holds the keys controls the assets.

That means the biggest risk isn’t necessarily the blockchain itself — it’s key compromise.

Institutional custody solutions therefore rely heavily on air-gapped environments, meaning systems that are physically isolated from the internet.

This dramatically reduces the risk of:

• remote cyber intrusions

• credential theft

• malware attacks

• supply chain compromises

The result is a system where digital assets are protected with physical infrastructure.

Security in Crypto Is Not Just Technology

One of the biggest misconceptions about digital finance is that innovation is purely technical.

In reality, protecting financial value requires three things:

• technology

• operational controls

• trust infrastructure

Custody providers like Prosegur Crypto operate facilities designed not just to store assets, but to assume operational responsibility for safeguarding them.

That means procedures, personnel, and security protocols matter just as much as code.

The Bigger Lesson

The future of finance may be digital.

But the foundations of trust remain very real.

Behind every blockchain wallet, exchange account, and institutional trading desk are physical systems designed to protect value at scale.

Sometimes those systems look less like servers…

…and more like a vault buried inside a bunker.

70% of all cyber attacks target small businesses, I can help protect yours.

#Cybersecurity #CryptoSecurity #DigitalAssets #Blockchain #Custody

Cybersecurity

Technology

Must-Read

Medical tech Giant Stryker Crippled by Iran Hacker Attack

March 12, 2026

•

20 min read

When Hackers Control the Control System

A cyberattack against Stryker Corporation just exposed a cybersecurity scenario that should make every security leader pause.

An Iran-linked hacking group known as Handala claimed responsibility for a disruptive attack that reportedly impacted Stryker’s Microsoft cloud environment.

But this wasn’t a typical ransomware incident.

There were no encryption notes.

No payment demands.

No traditional malware campaign.

Instead, the attack appears to have targeted something far more powerful.

The management layer.

What Reportedly Happened

According to multiple reports circulating online:

• Systems connected to Stryker’s Microsoft infrastructure experienced global disruption

• Employees reportedly saw the attacker’s logo appear on login pages

• Corporate laptops and mobile devices were allegedly disabled or remotely wiped

• The attack impacted the company’s Microsoft management environment rather than deploying ransomware

Stryker publicly stated there was no evidence of ransomware or malware, suggesting the incident may have involved direct access to cloud administration systems.

The Detail That Security Professionals Are Watching

Several online reports from individuals claiming to be employees said something unusual happened during the incident.

They were reportedly instructed to urgently uninstall Microsoft Intune from their devices.

For context:

Microsoft Intune is a cloud-based platform used by IT teams to manage, secure, and enforce compliance policies across enterprise devices.

It acts as a central command center.

Through Intune, organizations can:

• enforce security policies

• control device access

• apply compliance rules

• wipe compromised devices

• push security configurations

It’s not just device management.

It’s often the control plane for the entire enterprise device fleet.

Why This Changes the Threat Model

Most cyberattacks target individual endpoints.

Hackers compromise one computer at a time.

But when attackers gain access to the management layer, the equation changes completely.

Instead of attacking thousands of devices individually, they may be able to:

• issue commands across the entire fleet

• disable security controls

• remove monitoring tools

• wipe corporate devices remotely

• push malicious configurations

In other words:

Compromise the system that controls the systems.

The Strategic Questions This Raises

Incidents like this force security leaders to rethink a fundamental assumption.

Organizations spend enormous resources protecting endpoints.

But what protects the control infrastructure?

Security leaders should be asking:

• How resilient are our cloud management planes?

• What happens if attackers reach device orchestration systems?

• Are identity platforms protected with the same rigor as endpoints?

Because today’s enterprise environment is no longer controlled from inside the network.

It’s controlled from cloud identity and management platforms.

Why Healthcare Is Especially Vulnerable

Healthcare organizations operate at the intersection of:

• critical infrastructure

• national security

• patient safety

Companies like Stryker Corporation support hospitals, surgical systems, and medical operations worldwide.

A disruption to the management layer in healthcare environments can ripple into clinical systems, medical devices, and hospital operations.

These attacks are no longer just IT problems.

They can become operational crises.

The Real Takeaway

Cybersecurity used to focus on protecting individual machines.

Today, the battlefield has shifted.

Attackers are no longer targeting just the systems.

They are targeting the systems that control the systems.

And once the control layer is compromised, the entire environment can move at the attacker’s command.

A major cyberattack against Stryker Corporation is raising alarms across the cybersecurity and healthcare communities.

The Fortune 500 medical technology giant — a critical supplier of surgical equipment, orthopedic implants, and neurotechnology — was reportedly targeted by an Iran-linked hacking group known as Handala.

The disruption appears to have impacted Stryker’s global Microsoft environment, triggering outages across the company’s network infrastructure.

And if the attackers’ claims are accurate, the scale of the attack may be unprecedented.

What the Attackers Claim

The Handala group says the operation caused widespread disruption across Stryker’s systems.

According to statements posted by the group:

• More than 200,000 servers, laptops, and mobile devices were wiped

• Offices across 79 countries were affected

• Approximately 50 terabytes of data were stolen

70% of all cyber attacks target small businesses, I can help protect yours.

#Cybersecurity #Microsoft #HealthcareSecurity #IdentitySecurity #ManagedIT

Cybersecurity

Technology

Must-Read

He Didn’t Hack the Bank. He Became You.

March 11, 2026

•

20 min read

He Didn’t Hack the Bank. He Became You.

A small business recently lost $35,000.

No brute force attack.

No sophisticated network breach.

No Hollywood-style hacking.

Just one email.

A convincing phishing message landed in an employee’s inbox with what appeared to be a normal document attachment. The moment it was opened, a Remote Access Trojan (RAT) quietly installed itself on the computer used to access the company’s bank account.

From that moment forward, the attacker didn’t need to break into the system.

He simply watched.

What a Remote Access Trojan Actually Does

A Remote Access Trojan (RAT) is malware designed to give an attacker full remote control of a device.

Once installed, the attacker can:

• see your screen in real time

• capture every keystroke

• steal saved passwords

• access files and email

• monitor browser sessions

• silently control the computer

To the bank, everything looks legitimate.

Because the attacker isn’t logging in from some suspicious foreign server.

They are logging in from the victim’s own computer session.

How the Attack Likely Happened

In incidents like this, attackers typically combine several techniques.

Common entry points include:

• A phishing email with a malicious attachment

• A fake login page used to steal credentials

• A trojanized document or PDF that installs malware when opened

• Password reuse from credentials leaked in previous breaches

Once the RAT is installed, the attacker doesn’t rush.

They observe how the victim logs into banking systems, watch the workflow, and wait for the right moment.

Then they initiate a transfer.

Why Banks Often Can’t Recover the Money

From the bank’s perspective, the login appears legitimate.

The correct device.

The correct credentials.

The correct user session.

No alarms.

Because technically, the transaction was authorized from the victim’s own system.

By the time the fraud is discovered, the funds are often already moved through multiple accounts.

And recovery becomes extremely difficult.

Why Small Businesses Are Prime Targets

Many business owners believe they’re too small to attract attention from hackers.

The reality is the opposite.

Small businesses are attractive targets because they often lack:

• endpoint security monitoring

• advanced email filtering

• network detection systems

• employee security training

Attackers know this.

They also know that smaller organizations frequently rely on a single computer for banking access.

Which means one compromised device can expose the entire financial system.

The Dangerous Myth: “We’re Too Small”

Cybercriminals are not targeting prestige.

They are targeting probability.

Automated phishing campaigns send millions of emails.

The attacker doesn’t care which company clicks.

They only care that someone does.

One click can be enough.

How Businesses Protect Themselves

Defending against RAT-based attacks requires layered security.

Key protections include:

• Advanced phishing and email filtering

• Endpoint detection and response (EDR) tools

• Multi-factor authentication for banking systems

• Dedicated computers for financial transactions

• Regular cybersecurity awareness training

Most importantly, organizations need to treat cybersecurity the same way they treat physical security.

As infrastructure, not an optional expense.

The Bottom Line

You insure your:

• building

• vehicles

• equipment

But many businesses still protect their bank account with nothing more than a password and a computer that opens email attachments.

That’s not security.

That’s an invitation.

70% of all cyber attacks target small businesses, I can help protect yours.

#Cybersecurity #Phishing #SmallBusinessSecurity #RATMalware #ManagedIT

Technology

Cybersecurity

News

The traffic Camera Isn’t Just Watching. It’s Judging.

March 10, 2026

•

20 min read

The Camera Isn’t Just Watching. It’s Judging.

There used to be one assumption drivers relied on:

If a police officer wasn’t nearby, no one was watching.

That assumption is now obsolete.

Across cities worldwide, AI-powered traffic cameras are quietly transforming roadways into automated enforcement zones — capable of detecting violations in real time, capturing evidence, and issuing citations without an officer ever being present.

For drivers, it feels like technology enforcing the law.

For cybersecurity professionals, it raises a much bigger question:

How much surveillance infrastructure are we comfortable normalizing?

How AI Traffic Cameras Actually Work

Traditional traffic cameras simply recorded footage.

AI traffic cameras go much further.

Using machine learning models, these systems analyze video streams in real time to detect behaviors such as:

• texting while driving

• seatbelt violations

• speeding

• illegal parking

• running red lights

• blocking bus lanes

• unsafe driving behavior

The AI scans vehicles, analyzes driver posture, and identifies objects like smartphones inside the car.

If the system determines a violation occurred, it captures high-resolution evidence and automatically sends it into a citation processing system.

In many jurisdictions, that evidence leads directly to a ticket mailed to the driver.

The Companies Building the System

Several technology companies now specialize in AI traffic enforcement.

One of the most prominent is Acusensus, whose Heads-Up technology can detect driver behavior such as phone usage or lack of seatbelt compliance.

Their systems operate:

• 24 hours a day

• in any weather condition

• across fixed or mobile camera platforms

Another player is Hayden AI, a company focused on bus lane enforcement.

In cities like New York and San Francisco, their cameras are mounted directly onto buses to monitor surrounding traffic and identify vehicles blocking transit lanes.

The captured footage is then transmitted to enforcement systems for review.

Why Governments Are Deploying Them

Cities argue the technology improves safety and efficiency.

The goals typically include:

• reducing distracted driving

• improving bus lane compliance

• lowering accident rates

• automating enforcement in high-traffic areas

Some countries — including Australia and the United Kingdom — even allow citations to be issued without human review.

In the United States, most jurisdictions still require a human officer to verify violations before tickets are issued.

When AI Gets It Wrong

Despite the promise of safer roads, the systems are far from perfect.

Real-world examples highlight the limitations of automated enforcement.

In Florida, a driver received a citation for illegally passing a school bus — despite not being anywhere near the scene. After investigation, the ticket was voided.

In Western Australia, drivers have received citations because backseat passengers briefly removed their seatbelts, even when the driver had no control over the situation.

In New York City, thousands of drivers were mistakenly issued illegal parking tickets due to incorrect AI camera programming.

More than 3,800 citations had to be voided and refunded.

These incidents highlight a critical cybersecurity and governance question:

Who audits the algorithm?

The Hidden Risk: Automated Authority

AI traffic enforcement introduces something society hasn’t dealt with at scale before.

Algorithmic policing.

Unlike a human officer, an AI system:

• cannot interpret context

• cannot evaluate intent

• cannot exercise discretion

It simply flags what the algorithm was trained to detect.

And if that training data or configuration is flawed, mistakes can scale rapidly.

One misconfigured system can generate thousands of incorrect violations overnight.

Why This Matters Beyond Traffic Tickets

AI enforcement systems are a preview of something larger.

They represent a shift toward automated decision-making infrastructure embedded in everyday environments.

The same technologies being used to detect traffic violations today are closely related to systems used in:

• facial recognition

• behavioral monitoring

• predictive policing

• automated surveillance networks

For cybersecurity professionals, the challenge isn’t just protecting systems from hackers.

It’s ensuring that automated systems themselves remain accountable.

The Bigger Question

AI traffic cameras promise safer roads.

And in many cases, they will deliver exactly that.

But they also raise a fundamental societal question:

Are we comfortable handing enforcement authority to algorithms that operate 24/7, record everything, and occasionally get it wrong?

Because once that infrastructure is built, it rarely goes away.

70% of all cyber attacks target small businesses, I can help protect yours.

#Cybersecurity #AI #SmartCities #DataPrivacy #ManagedIT

Cybersecurity

Technology

Tips

Your Smart Glasses Might Not Be As Private As You Think

March 9, 2026

•

20 min read

Your Smart Glasses Might Not Be As Private As You Think

They look like ordinary glasses.

But behind the lenses of Meta’s AI smart glasses may sit an entire global workforce quietly reviewing what the cameras capture.

And sometimes, according to investigators, that footage includes the most private moments of people’s lives.

The Promise: An AI Assistant on Your Face

Meta’s Ray-Ban smart glasses are marketed as a next-generation device that can:

Take photos and video
Translate languages in real time
Identify objects around you
Answer questions about what you see
Act as an everyday AI assistant

With a simple command — “Hey Meta” — the glasses can analyze what the camera sees and provide information instantly.

The vision is ambitious:

a device that could eventually compete with smartphones.

But the infrastructure behind that intelligence tells a very different story.

The Hidden Workforce Behind AI

Investigations revealed that much of the intelligence behind these systems is not purely automated.

It is powered by human data annotators — workers who review images, videos, and conversations so AI models can learn.

Thousands of these workers operate through subcontractors around the world.

One major hub is in Nairobi, Kenya, where employees label images and review recordings used to train Meta’s systems.

They are sometimes referred to as the “manual laborers of the AI revolution.”

Their job is to help machines understand the world.

But the material they review can be deeply personal.

What Workers Say They See

According to workers interviewed in the investigation, some clips reviewed during annotation included:

People entering or leaving bathrooms
Individuals changing clothes
Couples in intimate situations
Visible credit cards or sensitive personal information
Private conversations and messages

In some cases, the footage appeared to be captured unintentionally.

Someone wearing the glasses might set them down — unaware the camera was still active.

A person nearby may not even realize they’re being recorded.

One worker described the experience bluntly:

“You understand that it is someone’s private life you are looking at, but you are expected to just do the work.”

The Data Pipeline Most Users Don’t See

For the AI assistant to function, the glasses must send media to Meta’s infrastructure.

That means:

Voice recordings
Images
Video clips
AI interactions

may be processed through cloud systems.

Meta’s terms also state that some interactions may undergo human review to improve AI performance.

From a machine-learning perspective, this is standard practice.

From a privacy perspective, it raises difficult questions.

Why Experts Are Concerned

Privacy and cybersecurity specialists highlight several issues:

1. Transparency

Many users may not fully understand that interactions could be reviewed by humans.

2. Data Flow

Data can move across multiple countries and subcontractors.

3. Consent

People appearing in recorded footage may have never agreed to be captured.

4. AI Training

Once data is used to train models, removing it becomes nearly impossible.

In other words, the glasses may collect far more information than users expect.

The Bigger Lesson About AI

AI systems don’t just run on algorithms.

They run on data — enormous amounts of it.

And that data often comes directly from people’s everyday lives.

The more context AI receives, the smarter it becomes.

But that intelligence comes with trade-offs.

The Real Question

Wearable AI devices promise convenience, productivity, and futuristic capabilities.

But they also introduce a new reality:

Your perspective may no longer be private.

Every interaction, every scene, every conversation could become part of a system designed to teach machines how humans live.

And the people teaching those machines may be sitting thousands of miles away.

70% of all cyber attacks target small businesses, I can help protect yours.

#Cybersecurity #AIPrivacy #DataProtection #ArtificialIntelligence #TechEthics

Technology

Cybersecurity

The Cloud Just Entered the Battlefield

March 8, 2026

•

20 min read

The Cloud Just Entered the Battlefield

For years, the tech industry has sold a comforting illusion: the cloud is everywhere and nowhere.

Virtual. Abstract. Untouchable.

Last weekend in the UAE reminded everyone of a very different reality.

The cloud is buildings.

And buildings can be hit.

When Infrastructure Becomes a Target

Millions across the region suddenly found themselves unable to access services from companies like:

Careem
Emirates NBD
Abu Dhabi Commercial Bank
Snowflake
Hubpay
Alaan

Banking apps stopped working.

Payments stalled.

Ride-hailing services went dark.

The disruption traced back to something rarely discussed in cloud marketing materials:

physical infrastructure failure.

Reports indicated that during the latest regional escalation, Amazon Web Services infrastructure in the UAE was impacted by drone strikes, with nearby facilities in Bahrain also sustaining damage.

The consequences were immediate:

Fires at facilities
Power systems failing
Fire suppression systems flooding equipment
Customers urged to shift workloads to other regions

The “cloud” suddenly looked a lot like a data center under attack.

The Cloud Was Never Virtual

Every cloud service ultimately runs inside a real building connected to the real world.

Those buildings depend on:

Power grids
Cooling systems
Fiber backbones
Water systems
Physical security
Geographic stability

Which means they also exist inside geopolitical realities.

For decades, wars targeted oil fields, ports, and pipelines.

Now they target compute.

Why This Matters Even More in the AI Era

The stakes are even higher today because much of the world’s AI infrastructure runs on hyperscale cloud providers.

Large AI systems — including models used by companies like Anthropic — rely heavily on AWS data centers.

That means the backbone of:

AI development
global finance
payment systems
enterprise software
logistics platforms

is concentrated in physical facilities that can be disrupted or attacked.

This is a structural shift in digital risk.

The New Reality: Geopolitical Cloud Risk

For years, redundancy meant deploying across multiple availability zones inside the same region.

That strategy is no longer enough.

The next decade of resilient infrastructure will require:

Geographic cloud diversification
multi-region deployment strategies
cross-provider redundancy
geopolitical risk modeling

Centralization used to be a technical risk.

Now it’s also a geopolitical one.

And organizations that fail to adapt will discover that their “distributed systems” weren’t actually distributed at all.

The Real Takeaway

The cloud didn’t just power the modern economy.

It became critical infrastructure.

And critical infrastructure has always been a strategic target.

The companies that survive the next decade won’t just be digitally resilient.

They’ll be geographically resilient.

Because the cloud is no longer floating above geopolitics.

It’s sitting right in the middle of it.

70% of all cyber attacks target small businesses, I can help protect yours.

#Cybersecurity #CloudSecurity #AWS #AIInfrastructure #ManagedIT

Tips

Travel

Purim Traffic Doesn’t Have to Be Chaos

March 2, 2026

•

20 min read

Purim Traffic Doesn’t Have to Be Chaos

Every year across the tri-state area, Mishloach Manos deliveries turn into gridlock.

Double parking. Backtracking. Missed turns.

What should be joyful becomes frustrating.

This Purim, there’s a smarter way.

Use a Route Optimizer

Instead of plugging addresses into your maps app one at a time, use a route optimization tool that calculates the most efficient delivery order automatically.

A proper route planner will:

Reorder addresses for minimal drive time
Eliminate unnecessary backtracking
Reduce fuel use
Cut stress and distraction
Help you finish faster and safer

When streets are crowded and parking is tight, efficiency matters.

My Recommendation: Spoke (Circuit Route Planner)

I recommend Spoke (Circuit Route Planner).

Signup is quick and free
Enter your list of addresses
The app optimizes your stops instantly
Follow the route in order

It takes minutes to set up — and can save hours.

Why This Matters

Efficiency is more than convenience.

It reduces:

Distracted driving
Aggressive last-minute turns
Stress-induced mistakes
Time away from your family

Purim is about connection, not congestion.

Plan ahead. Drive safely. Deliver with simcha.

#Purim #MishloachManos #RouteOptimization #TriStateLife #HolidayTips

Technology

Cybersecurity

Mobile-Arena

Location Data Is a Weapon Now

March 2, 2026

•

20 min read

Location Data Is a Weapon Now

A rumor is circulating online claiming there’s an “urgent DoD memo” telling U.S. service members to disable location services, and naming apps like Uber, Talabat, and Snapchat as “compromised.”

Right now, I cannot find any official public DoD/CISA/FBI bulletin that confirms those specific app-compromise claims. What I can say confidently:

Location data exposure is a real, recurring OPSEC risk for military personnel and their families.
CISA has warned that sophisticated actors target mobile apps and devices (often through social engineering and spyware) to gain access to communications and data.
DoD leadership has also emphasized that misuse/mismanagement of mobile apps can create cybersecurity and OPSEC risk and lead to unauthorized disclosure of non-public DoD information.

So the right posture is:

Don’t spread unverified screenshots. Do tighten your location security immediately.

What’s Actually True (Even If the Memo Isn’t)

If an adversary can’t hack your encryption, they’ll hack your habits.

Location services can expose:

Home/work patterns
Commute routes
Base proximity and routine
Social graph (who is near whom, when)
“Predictability” — the most dangerous part

That’s why OPSEC guidance has long recommended limiting geolocation exposure, especially in higher-risk contexts.

If You’re a Service Member (or Family): What to Do Today

1) Verify through official channels

Follow your chain of command, unit OPSEC guidance, and official alerts.
Treat social posts as unverified until confirmed.

2) Turn off location access for high-risk apps

Even if no app is “compromised,” you can reduce exposure by setting location to:

Never or While Using
Disable Precise Location where possible

3) Kill background location sharing

Disable location permissions that run “Always”
Turn off “Significant Locations” / Location History features
Remove location from photos and social posts

4) Review connected accounts

Some threats aren’t “the app,” but the account:

Change passwords
Use MFA (prefer app-based or passkeys where possible)
Watch for suspicious logins and device sessions

5) Assume your phone is a sensor

Even legitimate apps can leak data via:

Permissions
SDKs
Data brokers
Ad networks

Why This Matters to SMBs, Healthcare, Law Firms, and Schools

This exact dynamic happens in the business world:

Executives get tracked
Staff get profiled
Facilities get mapped
Routines get exploited

Sometimes it leads to cyber.

Sometimes it leads to physical risk.

And the worst part is: it doesn’t require a breach to become dangerous.

It only requires exposure.

Modern security is shifting from “protect systems” to “reduce what can be learned about you.”

The Takeaway

Even if the specific “DoD memo + these apps are compromised” claim turns out to be exaggerated or false…

The underlying risk is real.

Location data is operational intelligence.

Treat it that way.

70% of all cyber attacks target small businesses, I can help protect yours.

#Cybersecurity #OPSEC #MobileSecurity #DataProtection #ManagedIT

Cybersecurity

Technology

Tips

Teen Hackers Are Not Playing Games

March 4, 2026

•

20 min read

Teen Hackers Are Not Playing Games

The hoodie stereotype is comforting.

It’s also dangerously outdated.

Teenage hackers are not fictional masterminds tapping furiously in dark bedrooms. They are socially connected, persistent, and increasingly responsible for real-world economic damage.

And they are getting better.

The Shift: From Ego Hacks to Economic Destruction

Early hacker culture revolved around bragging rights and exposing bad code. Today’s teenage cyber groups operate differently.

They:

Coordinate on Discord and Telegram
Specialize in social engineering
Collaborate like startup teams
Join established ransomware syndicates

They don’t need zero-days.

They need:

A phishing script
A leaked password database
Persistence

And persistence is what makes them dangerous.

The Real-World Impact

The cyberattack against the Vastaamo Psychotherapy Center in Finland demonstrated the devastating human cost of data breaches.

Patient therapy notes — deeply personal records — were stolen and weaponized for extortion. Victims were directly contacted. Some still suffer psychological trauma.

That was not a nation-state operation.

It began with a teenager.

More recently, the UK saw coordinated attacks against major retailers including Marks & Spencer, the Co-op, and Harrods — causing hundreds of millions in losses and empty shelves across stores.

Teenagers were arrested.

The scale is no longer small.

Why Teenage Hacking Is Growing

1. It’s Addictive

Breaking into systems delivers a rush.

Social media amplifies it.

Attention reinforces it.

For developing brains, that loop can be hard to break.

2. We Underestimate Them

Security teams focus on APTs — Advanced Persistent Threats.

Researcher Allison Nixon coined a new term:

NPTs — New Persistent Threats.

Not advanced.

But persistent.

And absolutely a threat.

3. Cybercrime Is a Team Sport

Modern hacking is collaborative.

One person handles phishing.

Another acquires credentials.

Another deploys ransomware.

It resembles a small startup more than a lone wolf.

Why This Matters to SMBs, Healthcare, Law Firms, and Schools

Teenage attackers often:

Exploit help desks
Reset executive passwords
Abuse MFA fatigue prompts
Use stolen credentials from prior breaches

They rely on human trust, not technical brilliance.

For:

Healthcare organizations managing patient records
Law firms handling confidential litigation
Schools with limited IT staffing
SMBs without 24/7 monitoring

A coordinated teen group can cause catastrophic disruption.

The Escalation Risk

The most concerning trend:

Teen groups are increasingly partnering with established ransomware operators.

They provide access.

Criminal syndicates provide tooling.

That combination scales damage.

The Hard Truth

Teenage cybercrime is not a novelty problem.

It is:

Economically disruptive
Socially networked
Increasingly organized
And evolving

Ignoring it because it’s uncomfortable does not reduce the risk.

The conversation must shift from “How did kids do this?” to:

“How do we prevent them from becoming tomorrow’s professional ransomware operators?”

Because without intervention, the cycle continues.

70% of all cyber attacks target small businesses, I can help protect yours.

#Cybersecurity #ManagedIT #DataProtection #SMBSecurity #CyberThreats