Blog

By Eric Corcoran, Posted in Technology Week in Review

Monday 6/16 Ghost-Sender: Why Email Spoofing Still Works When Authentication Fails (Abnormal AI) Fraudulent messages could be delivered even when the spoofed domain had properly configured email authentication policies. The issue is the disconnect between authentication results and delivery behavior: the failure is visible in the mail flow, but the environment may still allow the message to reach the user. https://abnormal.ai/blog/ghost-sender-exchange-online-spoofing AI Agents Are Becoming Enterprise W... read more.

• June 19, 2026

By Steve Gold, Posted in Security

Think about Phil Connors in Groundhog Day. Every morning he wakes up in Punxsutawney, February 2nd, over and over again. At first it's a nightmare. Eventually, he realizes something: the loop is a gift. He can practice. He can rehearse. He can get it right, because tomorrow he gets another shot. Now imagine Phil wakes up one morning and the loop just stops. Permanent. Real. And he never once used those repeated days to actually prepare for the world beyond Punxsutawney. That's an untested backup. You assu... read more.

• June 16, 2026

By Eric Corcoran, Posted in Technology Week in Review

Monday 6/8 Gotham Technology Group is proud to announce that we’ve been named Arctic Wolf's 2026 Northeast Partner of the Year. This is a tremendous honor and a testament to the trust our clients place in us every day. Thank you again to Arctic Wolf for your continued support and partnership. We look forward to building on this success together. Click the link below to read our full press release: https://www.gothamtg.com/gotham-news Shadow AI is already on your endpoints. Here’s what to do... read more.

• June 12, 2026

By Steve Gold, Posted in Security

Written with contributions from Bryon Singh, Director of Security Operations, RailWorks Corporation In Terminator 2: Judgment Day, the T-1000 is terrifying precisely because it looks like anything. It can morph into a police officer, a floor, a person you trust. A security system checking for a "known bad" appearance would have no chance, because the T-1000 has no fixed form. The only way to catch it is to watch what it does: it hunts, it pursues, it kills. The behavior gives it away, even when the appeara... read more.

• June 09, 2026

By Steve Gold, Posted in Security, Support

Written with contributions from Bert Amodol and Jason Santamaria.  Turning every conversation into a word salad of acronyms wasn’t bad enough. Now, we’re taking words that have one meaning and assigning a different meaning. This must stop! First, it was “agent.” This always meant a piece of software that was installed on a computer. Now it means an autonomous system that can take goals, plan steps and carry out actions across multiple systems. Second is “Governance.&rdqu... read more.

• June 05, 2026

By Eric Corcoran, Posted in Technology Week in Review

Monday 6/1 Monitor Claude with Rubrik Agent Cloud and the Claude Compliance API (Rubrik) Rubrik Agent Cloud integrates with the Claude Compliance API to help organizations monitor how Claude is used across the enterprise. Teams can see who is using Claude, review activity when needed, flag risky behavior, and use Rubrik SAGE to create natural-language policies that route alerts to their security tools. https://www.rubrik.com/blog/company/26/5/monitor-claude-with-rubrik-agent-cloud-and-the-claude-complian... read more.

• June 05, 2026

By Eric Corcoran, Posted in Technology Week in Review

Tuesday 5/26 CIS Safeguard 10.6: Centrally Manage Anti-Malware Software https://www.gothamtg.com/blog/cis-safeguard-106-centrally-manage-anti-malware-software How to Prevent Man-in-the-Middle Attacks (HYPR) Man-in-the-middle attacks are becoming increasingly common and increasingly difficult to prevent. Sophisticated phishing kits are readily available to purchase that include tools to launch man-in-the-middle attacks to steal MFA tokens. Remote workers on unsecured networks present a particularly soft... read more.

• May 29, 2026

By Bert Amodol, Posted in Security

You're using the same password for your bank, your email, and that pizza rewards app you signed up for in 2019 to save $2 on breadsticks. Those breadsticks may end up being very expensive. Here's why reusing passwords is basically handing a master key to every burglar on the internet and why they don't even have to work hard to use it. The math is brutal. The attackers are lazy. That's the scary part. When a company gets breached, and companies get breached constantly, attackers take those username/passw... read more.

• May 27, 2026

By Steve Gold, Posted in Security

Written with contributions from Bryon Singh, Director of Security Operations, RailWorks Corporation In Avengers: Infinity War (2018), Earth’s heroes don’t lose because they lack power—they lose because they’re disorganized. Some fight in New York, others in Wakanda, others in space. Each group acts with good intent, but without centralized coordination, gaps appear—and Thanos exploits them. That is the exact problem CIS Safeguard 10.6: Centrally Manage Anti-Malware Software i... read more.

• May 26, 2026

By Eric Corcoran, Posted in Technology Week in Review

Monday 5/18 AI is moving fast. Your infrastructure needs to keep up. (Citrix) The more AI expands across the business, the harder it becomes to manage. Who has access to what models? How much is it actually costing? What happens when sensitive data ends up in a prompt that wasn’t supposed to be there? These aren’t hypothetical concerns — they’re the operational realities that organizations are running into as AI scales from a handful of pilots to something much larger. https://www... read more.

• May 22, 2026