🔴 Nine out of ten ransomware attacks never get reported. Here's what that means for your clients

The number your clients never see is the one that should worry them most.

BlackFog published research this week showing that in Q1 2026, there were 264 publicly disclosed ransomware attacks globally. The actual number of attacks was 2,160, nearly ten times higher.

Companies are quietly paying ransoms, restoring from backups, and saying nothing. This ratio of hidden to disclosed attacks ticked up slightly from Q1 2025. Cybersecurity Dive

The reason companies stay quiet is understandable. But the effect is that the public picture of ransomware risk is dramatically understated.

This is one of the most useful numbers in the MSP sales toolkit. When a client says “we’ve never had a problem,” the honest answer is that most organisations that DID have a problem didn’t tell anyone about it.

🟡 May Patch Tuesday is done: 120 flaws fixed, no zero-days this month

Yesterday’s Patch Tuesday addressed 120 vulnerabilities across Windows, Office, Azure, and Microsoft 365… including 17 critical flaws, 14 of which are remote code execution vulnerabilities.

The good news: no zero-days exploited in the wild this month, which makes it a relatively calm Patch Tuesday by recent standards. The Secure Boot certificate update we flagged yesterday is included. BleepingComputer

🟢 The UK's biggest MSP event opens this morning. You going?

The MSP Show opens its doors today at ExCeL London for its third time. It’s co-located with the SITS Service Desk and IT Support Show. MSP Show

If you’re there today or tomorrow, enjoy it. Hit reply and tell us if you’re heading over.

And we’ll keep an eye on any big announcements from the show floor today.

Enjoy your hump day. We’ll be back in your inbox tomorrow morning.