All Posts

AI is showing up everywhere in small business: email, proposals, accounting workflows, customer support, and “helpful” copilots inside Microsoft 365 and other platforms. That’s the upside. The downside is what’s been surfacing over the last few weeks: attackers are using AI to make scams feel more human, and they’re using AI systems to create brand-new paths for data exposure. The old security model assumed your biggest risk was a bad link that dropped malware. The new model

AI tools like ChatGPT are now part of day-to-day work for most teams. Writing emails, summarizing meetings, drafting proposals, even troubleshooting technical issues. That productivity boost is real. But so is the risk: AI makes it easy to accidentally share sensitive information  (client details, contracts, passwords, financials) in a place it never should have gone. For small and mid-sized businesses, one “helpful” prompt can turn into a compliance issue, a client trust iss

A plain-English 2026 guide for SMBs to adopt AI safely, reduce cyber risk, and stay insurable, plus a 30-day action plan and renewal-ready evidence checklist.

2025 was a loud year for small businesses and technology, not because of shiny new tools, but because the basics  got harder to ignore. Across the themes we kept coming back to on Hudson (aging tech driving costs, security threats getting more “human,” vendor risk showing up in real ways, and AI moving from curiosity to daily workflow), one message became clear: SMBs don’t need more tech, they need clearer priorities and better control. So as we head into 2026, the goal isn’t

AI Sprawl: the SMB problem nobody planned for A year ago, most small businesses were asking, “Should we use AI?” Now the more common reality is: you’re already using it, you just don’t know how many. That’s AI sprawl  (and increasingly AI agent sprawl ): a fast-growing collection of AI tools, copilots, plugins, and “agents” adopted by different people for different tasks… without a clear owner, standard process, or consistent guardrails. It usually starts with good intention

The rise of token theft + “Approve Access” scams hitting small businesses If you’re a business owner, you’ve probably heard the standard advice for years: Use strong passwords Turn on Multi-Factor Authentication (MFA) Train employees not to click suspicious links That advice is still good. But here’s the uncomfortable update: Attackers are increasingly bypassing passwords (and even MFA) by stealing “login tokens” or tricking users into approving access. In plain English: the

A simple SMB guide (with guardrails so it doesn’t bite you later). Agentic AI is most valuable when it’s pointed at repeatable work  that steals time, causes delays, or slips through the cracks. The trick is to start with workflows that are: High volume Low-to-medium risk Easy to measure Easy to roll back Below are 5 workflows many SMBs can stand up in 30 days, if you start in “recommendation mode” first, then graduate to supervised execution. Before you start: the 3 rules th

A simple guide for owners who want the upside, without the surprises. You’ve probably used “AI” as a helper already: write an email, summarize a document, generate an ad, draft a policy. Agentic AI is the next step.  Instead of only suggesting  work, it can plan + take actions across your tools  (email, CRM, accounting, ticketing, calendars, procurement) with limited supervision. Think: AI that can do the work , not just talk about it. What is Agentic AI (in plain business te

Artificial intelligence is no longer just a productivity tool. It has quickly become a force multiplier for fraud , and small and mid-sized businesses (SMBs) are firmly in the blast radius. From deepfake voices impersonating executives to AI-generated phishing emails that look indistinguishable from real communications, fraud tactics are evolving faster than many organizations’ defenses, and faster than many insurance policies were originally designed to handle. For SMBs, the

Cyber insurance applications and renewals have changed.  What used to be a simple questionnaire has evolved into a technical, sometimes overwhelming review of your security posture, data handling practices, and operational maturity. Insurers are asking tougher questions, requiring proof of controls, and in many cases, denying or limiting coverage when submissions are incomplete or inaccurate. At Hudson, we’ve seen firsthand how frustrating this process has become for business

Cyber insurance renewals aren’t what they used to be. The days of a one-page application and a quick signature are gone. Carriers now require detailed security documentation, ransomware supplemental forms, and proof that your business meets minimum cybersecurity standards. This guide walks you through how to prepare , what information you’ll need , and how to avoid surprises  so your renewal goes smoothly. Before You Start a Cyber Insurance Renewal: Know What the Insurer Is L

If you’re a small or mid-sized business owner, nothing makes your stomach drop quite like an email from your insurance broker that says: “Please fill out this ransomware supplemental application." You click the attachment, and suddenly you’re staring at pages of technical questions about MFA, backups, endpoint monitoring, patching cadence, privileged accounts, and terms you may have never heard before. So, what is this questionnaire, and why are you suddenly responsible for u

A recent ransomware attack on Fulgar S.p.A. , a major yarn and synthetic fiber supplier, is a stark reminder to all businesses, especially small and mid-sized companies, that third-party risk is real, and it's escalating fast . Fulgar’s clients include fashion giants like H&M, Adidas, Wolford, and Calzedonia. More details about this breach were posted on Tech Radar and Cybernews . What Happened at Fulgar The RansomHouse group claims to have encrypted and exfiltrated internal

If you’ve ever felt like you’re running your business on gut instinct and scattered spreadsheets, you’re not alone. Most small business owners know their numbers matter, but getting clear, actionable insights out of all that data often feels impossible. That’s where Business Intelligence (BI)  and Artificial Intelligence (AI)  come in. These aren’t just buzzwords for big corporations, they’re powerful tools that can help any  small business work smarter, make better decisions

The holiday shopping season isn’t just busy for small and mid-sized businesses (SMBs), it’s also peak season for cyber-criminals and scammers. While most businesses focus on sales, marketing, and meeting end-of-year goals, threat actors are busy exploiting the chaos. From fake ads to phishing emails and fraudulent vendor invoices, scams surge during the holidays, and SMBs are prime targets. Why? Because scammers know that smaller organizations often lack the resources, staff,

Running a small business is already a full-time job. You’re juggling staff, customers, finances, and growth. So the idea of bringing in artificial intelligence (AI) might feel like “tech stuff for the big guys.” The good news: the U.S. Small Business Administration (SBA) encourages small businesses to use AI and shows how to do it wisely. Reference article here . In this post, I’ll walk you through what the SBA says about AI for small business, why you should care, how to sta

Small and medium-sized businesses (SMBs) often assume that they’re too small to be targeted by cyber criminals. That’s a myth. According to Insurance Experts, while large enterprises may have deeper pockets, they often have stronger security platforms. SMBs, by contrast, frequently operate with limited resources and competing priorities, making them an attractive target. Below we walk through the five most common cyber-risks facing SMBs today and then make the case for why h

🔔 Attention SMB leaders — it’s been one week since support officially ended for Windows 10 (as of October 14, 2025).   If you’re still running Windows 10 in your environment, it’s time to act — your business is now exposed to elevated risks and hidden costs. Here’s why this matters now , and what you should do about it: ⚠️ Why this matters for your business Without security updates, Windows 10 devices will increasingly become targets for cyber-attacks. The OS will continue t

Your tech stack is the backbone of your business, but when it starts to age, it can quietly drain your budget and open the door to serious cybersecurity risks . Many small and midsize businesses operate with outdated systems or redundant tools without realizing the full cost. Let’s break down the signs that your tech stack may be hurting your bottom line — and how to turn things around. 1. Escalating IT Costs Without Better Results If your IT spend keeps rising while producti

In the 2025 Empowering Small Business report by the U.S. Chamber’s Technology Engagement Center (C_TEC), Part Two drills into how small businesses are adopting AI, what benefits they report, and what challenges remain. In this post, I’ll summarize key findings from Part Two and explore practical lessons for small business owners who want to use AI — especially around security, ethics, and risk mitigation.