9 Out of 10 Small Businesses Have a Compromised User Right Now. Most Don't Know I
Threat Intelligence Identity Risk June 2026 · 8 min read The Guardz 2026 State of MSP Threat Report analyzed six months of real telemetry from SMB environments worldwide. The headline finding is the most alarming number in small business cybersecurity this year — and almost nobody is talking about it yet. Every post in this series has described the risk of credential compromise — what it costs, how it happens, how attackers use it, and what to do about it. This post contains the research that puts a number on exactly how widespread that compromise actually is inside real small businesses right now. In April 2026, Guardz published its 2026 State of MSP Threat Report — six months of telemetry data from September 2025 through February 2026, drawn from SMB environments managed by IT providers across North America, EMEA, and APAC, covering billions of audit events across Microsoft 365, Google Workspace, endpoint, and ...