Talk to a Strategist

612-656-4162

Get Started

Author: Eric Brown

What The FCC Router Ban Means For Security Leaders

Why This Matters Most teams treat consumer routers as commodity hardware. The FCC’s latest move challenges that assumption — blocking new foreign-made consumer routers from U.S. markets on national security grounds. The rationale is credible. State actors like Volt Typhoon have used small office and home office routers as staging points for intrusion, surveillance, and […]

Iran-Linked Cyber Surges Reward Boring Preparedness

When The Noise Arrives Early During recent U.S. and Israeli escalation involving Iran, security teams watching multiple environments saw something familiar: waves of spam and scanning activity showed up before the headlines fully landed. Whether you call it pre-positioning, opportunistic copycats, or state-adjacent actors moving on a predictable schedule, the operational point is the same. […]

Wearables Make Capture Passive

Wearable AI recording device pin on a suit jacket beside the title “The Rise of Wearable AI Surveillance,” representing cybersecurity risks of wearable AI recording devices.

A phone is an obvious recording device. A wearable pin is engineered to be frictionless and socially normal. That shifts risk in ways many meeting norms and acceptable use policies were never built for. When collection becomes passive, users do not need to decide to “record.” In some homes, automation assistants from Amazon or Google […]

Greyware, Supply Chain Integrity, and Why “New” Network Equipment Must Mean Factory-Sealed

Opened enterprise network switch packaging with headline about supply chain integrity, illustrating cybersecurity and compliance risks.

When your brand-new Cisco switches arrive looking like they’ve been to a few parties without you, it’s not just an unboxing disappointment—it’s a supply chain red flag that could compromise your entire infrastructure. Let me tell you about a recent situation that perfectly illustrates why “trust but verify” isn’t paranoia in cybersecurity—it’s basic operational hygiene. […]

How AI Is Transforming Cybercrime and What It Means for Security Teams 

AI system analyzing cybersecurity data dashboards on multiple screens, illustrating AI-driven cybercrime detection and security operations.

Artificial intelligence is no longer a future concern for cybersecurity teams. It is a present-day force reshaping how cybercrime is planned, executed, and scaled. While AI has unlocked powerful new defensive capabilities, it has also lowered the barrier to entry for attackers, accelerated attack timelines, and made threats more adaptive than ever.  For security teams, […]

Cybersecurity Highlights of 2025 and IT Security Predictions for 2026

Laptop viewed from above with hands typing on a keyboard, a digital shield and lock icon on the screen, and text reading “2025 Recap + 2026 Outlook” and “Cybersecurity Trends and IT Security Strategy Heading Into 2026,” representing cybersecurity planning and risk management.

Cybersecurity in 2025 marked a turning point for organizations of all sizes. Threats became faster, more targeted, and more disruptive, while leadership teams placed greater emphasis on cybersecurity risk management and resilience. IT security was no longer viewed as a technical concern alone. It became a business priority tied directly to uptime, revenue, and trust.  […]

Spyware Campaigns Targeting Messaging Apps: What IT Audit Teams Need to Know 

CISA has issued a new warning about active spyware campaigns targeting messaging apps like Signal and WhatsApp. High-value users are being hit with device exploits, fake apps, and zero-click attacks. Here’s what organizations need to know — and how IT Audit Labs can help strengthen mobile and messaging security.

St. Paul Cyber Attack: Eric Brown Shares Expert Insights on FOX 9

Cybersecurity expert Eric Brown of IT Audit Labs joined FOX 9 to break down the recent St. Paul cyber attack, explaining how ransomware cripples city systems, the role of the National Guard’s cyber team, and steps individuals can take to protect their data. Learn the motives behind municipal cyber attacks, the high cost of recovery, and why ongoing cybersecurity investment is critical.

The Missing Piece in Digital Transformation

Graphic showing a puzzle with a missing piece and the text “The Missing Piece in Digital Transformation,” representing gaps in digital transformation strategy.

Digital transformation initiatives promise efficiency, innovation, and competitive advantage. Organizations invest heavily in new technologies, Agile frameworks, IT service management models, and process improvement methodologies in pursuit of modernization. Yet despite these investments, many organizations struggle to achieve meaningful results. If your organization has adopted new tools and frameworks but still experiences stalled initiatives, slow […]

Microsoft Vulnerabilities: How to Measure Progress With a Growing Code Base

How we got here  In the early days of software development, security was an afterthought. Protocols like HTTP, FTP, and Telnet were created with little to no safeguards, leaving the internet—and its users—wide open to exploitation. Initially, attacks were driven by curiosity or notoriety: defacing web pages, crashing servers, and stealing unreleased content. But as […]