825 Technologies

April 😎 Newsletter: Cyberattacks are #1 fear, SMB Productivity Hacks, MS Price increases, and some fun! -

April 😎 Newsletter: Cyber upgrades by Google, Custom Apps, bring your ideas to life, and some fun! Spring is in bloom, and each year I am always stunned by the suddenness of trees leaving out or peonies growing. One night there is nothing but dirt and trunks, but maybe you see the slightest evidence of a bud. Then the next morning the leaves on the tree limbs are spreading and the peonies’ shoo...

🗂️ SMBs 📈
Microsoft just dropped April Patch Tuesday (167 security fixes) — and one SharePoint issue is already being used in real attacks.

What to do this week:
- Patch SharePoint Server first (CVE-2026-32201).
- Make sure Windows updates are rolling out to all PCs/laptops.
- Confirm Microsoft Defender is updating automatically.
- If you have remote workers, patch those laptops ASAP.

Want us to help you prioritize and confirm everything’s covered? Send us a message.

SMBs: ransomware is still hitting hard — and the playbook is changing.

Bitdefender estimates 750–800 U.S. organizations were hit in just Jan–Feb 2026.

Takeaways for small teams:
+ Backups aren’t enough — you need tested restores (RTO/RPO) and an offline copy.
+ Identity-first attacks are rising (credential + session token theft) — tighten MFA + conditional access.
+ Patch faster, especially internet-facing systems (VPN/firewall) and common apps.
+ Make sure your EDR/AV is current and tuned — attackers are leaning into defense evasion.

If you want a quick ransomware readiness check, we’ll help you prioritize the top 5 fixes.

What’s the one area you’re least confident about today: backups, patching, or identity security?

As many families are heading into Spring Break, we’re adjusting our schedule slightly this week.

Our team will be prioritizing service-related and support inquiries while spending some time with family on select days. Project work will be minimally scheduled and may experience slight delays.

We appreciate your understanding and hope you’re able to enjoy the warmer weather and a well-deserved break!

Outlook has been a frustration for everyone at some time or another - you can't even get away from it in space!!! 🤣

As a matter of fact, in our office we sometimes call it LookOut!

If you need help with any software, especially Outlook, feel free to let us know!!

Artemis II crew is just like us, needs help with Microsoft Outlook issues And no, Commander Reid Wiseman didn't ask Copilot for assistance.

**SMBs using Fortinet: this is a patch-now moment.**
-----------------------------------------------
Security researchers are reporting active exploitation of a critical FortiClient EMS bug (CVE-2026-21643) that can lead to remote code ex*****on.

*What to do this week:*
+ Confirm whether FortiClient EMS is internet-exposed
+ Patch/upgrade FortiClient EMS immediately
+ Lock down admin access (MFA + IP restrictions)
+ Review logs for unusual requests and new admin activity
+ If you’re not sure whether you have FortiClient EMS in your environment, ask your IT provider to confirm.

Want a quick checklist for validating exposure and patch status? We've build a quick reference here:

Quick heads-up: fake “support” messages in chat are a thing.

FBI/CISA warned about phishing where attackers pretend to be app support and try to get you to share a verification code or PIN — that can lead to an account takeover.
=======================
A few practical tips for SMBs:
--------------------------------
+ Never share a verification code or MFA prompt with anyone

+ If “support” reaches out in a DM, stop and verify another way

+ If you think you clicked or shared something, tell IT immediately (fast reporting helps a lot)
=======================

If you want, we can help you set simple rules for your team and tighten account security.

Question: what chat apps does your team use most (Teams, Slack, Signal, WhatsApp, something else)?

Tax season brings a spike in phishing.

Microsoft is seeing tax-themed emails (W-2s, 1099s, IRS notices, “CPA messages”) trying to steal Microsoft 365 logins — and some even push “remote support” software that attackers can use to get in.

A few quick SMB moves this week:
+ Tell your team: don’t scan QR codes or open surprise tax attachments
+ Make sure MFA is turned on for everyone
+ Only allow approved remote support tools (and block the rest)

Want us to sanity-check your Microsoft 365 email/security settings before the busy season peaks? Message us.

Question: do your “finance” emails go to a shared inbox or a specific person?