The Veriti Spottr Cybersecurity Brief

Threat Intelligence Identity Risk June 2026  ·  8 min read The Guardz 2026 State of MSP Threat Report analyzed six months of real telemetry from SMB environments worldwide. The headline finding is the most alarming number in small business cybersecurity this year — and almost nobody is talking about it yet. Every post in this series has described the risk of credential compromise — what it costs, how it happens, how attackers use it, and what to do about it. This post contains the research that puts a number on exactly how widespread that compromise actually is inside real small businesses right now. In April 2026, Guardz published its 2026 State of MSP Threat Report — six months of telemetry data from September 2025 through February 2026, drawn from SMB environments managed by IT providers across North America, EMEA, and APAC, covering billions of audit events across Microsoft 365, Google Workspace, endpoint, and ...

Breaking News Phishing Alert June 2026  ·  7 min read The 2026 FIFA World Cup kicks off June 11. The FBI has issued a formal warning: more than 4,300 fake FIFA websites are already live, designed to steal credentials and payment details from fans desperately searching for tickets. What the FBI warning doesn't say is what those stolen credentials mean for the businesses those fans work for. On May 27, 2026, the FBI's Internet Crime Complaint Center published a formal public service announcement: cybercriminals are conducting coordinated spoofing attacks against FIFA's official website. The fake sites are pixel-perfect replicas — cloned branding, cloned checkout flows, cloned single sign-on authentication pages. They're promoted through Facebook ads, Google sponsored results, Telegram, and WhatsApp. They're designed to steal exactly three things: your personal information, your payment details, and your login cr...

Case Study Ransomware June 2026  ·  8 min read In February 2025, attackers walked into Marks & Spencer's network using social engineering against a service desk. For 70 days they moved through the system, stole the password database for every domain user, and exfiltrated customer data — before deploying ransomware that shut down online shopping for nearly seven weeks and cost the company $409 million. Here are the five things every business with a payment system needs to know. Marks & Spencer is one of Britain's most recognizable brands — 64,000 employees, 1,049 stores, a household name for 141 years. In the spring of 2025 it became the most expensive ransomware victim in British retail history. The attack didn't start in April when the ransomware deployed. It started in February — two months earlier — when attackers called M&S's IT service desk, posed as an employee, and used social engineering to get their...