<?xml version="1.0" encoding="UTF-8"?><rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/"><channel><title>Qutzl Insights</title><description>Practical IT articles and tutorials for small and medium businesses from Qutzl.</description><link>https://insights.qutzl.net/</link><item><title>VM-Setup: post-install Linux tooling that actually sticks around</title><link>https://insights.qutzl.net/articles/vm-setup-linux-xcp-ng-post-install/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/vm-setup-linux-xcp-ng-post-install/</guid><description>A look at Narehood/VM-Setup, the menu-driven Bash utility for XCP-ng guests and generic Linux hosts, plus the newer update, pin-sync, and installer-hardening work.</description><pubDate>Sat, 18 Jul 2026 23:30:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Linux</category><category>linux</category><category>xcp-ng</category><category>docker</category><category>virtualization</category><category>bash</category><author>Michael Narehood</author></item><item><title>Dotfiles with a Kali-style prompt you can actually customize</title><link>https://insights.qutzl.net/articles/dotfiles-kali-style-prompt-settings/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/dotfiles-kali-style-prompt-settings/</guid><description>What’s in Narehood/dotfiles (bash/zsh, tmux, vim, screen) and the newer prompt.conf settings for emoji, colors, layouts, and safer install/uninstall.</description><pubDate>Sat, 18 Jul 2026 22:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Linux</category><category>linux</category><category>bash</category><category>zsh</category><category>dotfiles</category><category>shell</category><author>Michael Narehood</author></item><item><title>A guest Wi-Fi setup that won’t expose the office</title><link>https://insights.qutzl.net/articles/guest-wifi-that-wont-expose-the-office/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/guest-wifi-that-wont-expose-the-office/</guid><description>How to give visitors internet access without putting file shares, cameras, and printers on the same network as your coffee-shop guests.</description><pubDate>Sat, 18 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>wifi</category><category>networking</category><category>security</category><author>Michael Narehood</author></item><item><title>How to update Arch Linux</title><link>https://insights.qutzl.net/articles/how-to-update-arch-linux/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/how-to-update-arch-linux/</guid><description>How to run a safe Arch system update with pacman -Syu: read the news, update cleanly, handle pacnew files, and reboot when the kernel changes.</description><pubDate>Sat, 18 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Linux</category><category>arch</category><category>linux</category><category>updates</category><author>Michael Narehood</author></item><item><title>How to update Red Hat Enterprise Linux</title><link>https://insights.qutzl.net/articles/how-to-update-redhat-enterprise-linux/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/how-to-update-redhat-enterprise-linux/</guid><description>Keep RHEL (and close cousins like AlmaLinux or Rocky) patched with dnf: check subscription/repos, update safely, reboot for new kernels, and verify services.</description><pubDate>Sat, 18 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Linux</category><category>redhat</category><category>rhel</category><category>linux</category><category>updates</category><author>Michael Narehood</author></item><item><title>How to update Ubuntu</title><link>https://insights.qutzl.net/articles/how-to-update-ubuntu/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/how-to-update-ubuntu/</guid><description>A straightforward checklist for keeping Ubuntu Server or Desktop patched: apt update, upgrade, reboots, and what to verify before you walk away.</description><pubDate>Sat, 18 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Linux</category><category>ubuntu</category><category>linux</category><category>updates</category><author>Michael Narehood</author></item><item><title>iOS 27 Betas Feel More Stable Than iOS 26</title><link>https://insights.qutzl.net/articles/ios-27-beta-more-stable-than-ios-26/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/ios-27-beta-more-stable-than-ios-26/</guid><description>Early iOS 27 developer and public betas are unusually polished, often snappier and steadier than iOS 26, but a beta is still a beta for work phones.</description><pubDate>Sat, 18 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Apple</category><category>ios</category><category>apple</category><category>beta</category><author>Michael Narehood</author></item><item><title>Turn on MFA for Microsoft 365 before the next phish</title><link>https://insights.qutzl.net/articles/turn-on-mfa-for-microsoft-365/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/turn-on-mfa-for-microsoft-365/</guid><description>A practical path to require multifactor authentication in Microsoft 365 for a small business, without locking everyone out on Friday afternoon.</description><pubDate>Sat, 18 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>mfa</category><category>security</category><author>Michael Narehood</author></item><item><title>Hugging Face&apos;s July 2026 incident: agentic attackers and defender blind spots</title><link>https://insights.qutzl.net/articles/huggingface-july-2026-security-incident/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/huggingface-july-2026-security-incident/</guid><description>Hugging Face disclosed an AI-driven intrusion through its dataset pipeline. Lessons on hosted model guardrails, local forensics, and treating data processing as attack surface.</description><pubDate>Fri, 17 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>ai</category><category>incident-response</category><author>Michael Narehood</author></item><item><title>What “good enough” endpoint security looks like for an SMB</title><link>https://insights.qutzl.net/articles/smb-endpoint-security-baseline/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/smb-endpoint-security-baseline/</guid><description>A realistic endpoint baseline for small businesses: patching, MFA, EDR, backups, and least privilege, without pretending you need a Fortune 500 stack.</description><pubDate>Fri, 17 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>endpoints</category><category>edr</category><author>Michael Narehood</author></item><item><title>WordPress Core CVE-2026-63030: patch 7.0.1 and older branches now</title><link>https://insights.qutzl.net/articles/wordpress-core-cve-2026-63030-patch-now/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/wordpress-core-cve-2026-63030-patch-now/</guid><description>Critical unauthenticated RCE (wp2shell) hits WordPress 7.0.0–7.0.1 and 6.9.0–6.9.4. What the CVEs mean, which versions are fixed, and what SMBs should do today.</description><pubDate>Fri, 17 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Hosting</category><category>security</category><category>wordpress</category><category>cve</category><category>patching</category><author>Michael Narehood</author></item><item><title>OpenAI GPT-Red and what prompt injection means for your Copilot rollout</title><link>https://insights.qutzl.net/articles/openai-gpt-red-defensive-testing/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/openai-gpt-red-defensive-testing/</guid><description>OpenAI&apos;s internal GPT-Red red-teaming model shows how automated prompt injection testing scales. Practical steps for businesses deploying Copilot, agents, and AI connectors.</description><pubDate>Thu, 16 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>AI &amp; ML</category><category>ai</category><category>openai</category><category>security</category><category>prompt-injection</category><author>Michael Narehood</author></item><item><title>When to stop self-hosting email (and when to keep it)</title><link>https://insights.qutzl.net/articles/when-to-stop-self-hosting-email/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/when-to-stop-self-hosting-email/</guid><description>A straight take on leaving on-prem or cPanel mail for Microsoft 365 / Google Workspace, and the few cases where self-hosting still makes sense.</description><pubDate>Thu, 16 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Hosting</category><category>email</category><category>microsoft-365</category><category>hosting</category><author>Michael Narehood</author></item><item><title>July 2026 Patch Tuesday: when AI discovery floods the CVE queue</title><link>https://insights.qutzl.net/articles/patch-tuesday-ai-discovery-surge/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/patch-tuesday-ai-discovery-surge/</guid><description>Microsoft&apos;s record July 2026 release reflects AI-assisted vulnerability discovery. What MSPs and SMBs should change in triage without freezing from volume anxiety.</description><pubDate>Wed, 15 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>patching</category><category>microsoft</category><category>cve</category><category>ai</category><author>Michael Narehood</author></item><item><title>Secure Wi‑Fi for hybrid offices</title><link>https://insights.qutzl.net/articles/secure-wifi-for-hybrid-offices/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/secure-wifi-for-hybrid-offices/</guid><description>Hybrid schedules mean more unknown devices on site. Design for that.</description><pubDate>Wed, 15 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>networking</category><category>remote-work</category><author>Michael Narehood</author></item><item><title>The cost of skipping staged updates</title><link>https://insights.qutzl.net/articles/cost-of-skipping-staged-updates/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/cost-of-skipping-staged-updates/</guid><description>Diving from “never patch” to “patch everything Friday” creates avoidable outages.</description><pubDate>Mon, 13 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>patching</category><category>msp</category><author>Michael Narehood</author></item><item><title>Laptop standardization pays off</title><link>https://insights.qutzl.net/articles/laptop-standardization-pays-off/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/laptop-standardization-pays-off/</guid><description>Fewer models mean faster imaging, patching, and spare strategy.</description><pubDate>Fri, 10 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>endpoints</category><category>msp</category><author>Michael Narehood</author></item><item><title>Passkeys for business admins</title><link>https://insights.qutzl.net/articles/passkeys-for-business-admins/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/passkeys-for-business-admins/</guid><description>Why phishing-resistant MFA belongs on privileged accounts first, and how to start small.</description><pubDate>Wed, 08 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>mfa</category><category>identity</category><author>Michael Narehood</author></item><item><title>Inventory your public websites before the next CVE</title><link>https://insights.qutzl.net/articles/inventory-your-public-websites/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/inventory-your-public-websites/</guid><description>You cannot patch what you forgot existed. A quick method to find shadow WordPress and forgotten subdomains.</description><pubDate>Mon, 06 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Hosting</category><category>security</category><category>wordpress</category><category>inventory</category><author>Michael Narehood</author></item><item><title>How we triage critical CVEs for clients</title><link>https://insights.qutzl.net/articles/how-we-triage-critical-cves-for-clients/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/how-we-triage-critical-cves-for-clients/</guid><description>A look at Qutzl’s patch priority process when a core product vulnerability hits the news.</description><pubDate>Fri, 03 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>cve</category><category>msp</category><author>Michael Narehood</author></item><item><title>July security hygiene before vacation season</title><link>https://insights.qutzl.net/articles/july-security-hygiene-before-vacation-season/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/july-security-hygiene-before-vacation-season/</guid><description>Out-of-office season is when delayed patching and standing admin rights get expensive. A pre-travel checklist.</description><pubDate>Wed, 01 Jul 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>msp</category><author>Michael Narehood</author></item><item><title>Web form spam and fake leads</title><link>https://insights.qutzl.net/articles/web-form-spam-and-fake-leads/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/web-form-spam-and-fake-leads/</guid><description>Bot leads waste sales time and can hide phishing callbacks.</description><pubDate>Mon, 29 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Hosting</category><category>security</category><category>hosting</category><author>Michael Narehood</author></item><item><title>Client data on personal phones</title><link>https://insights.qutzl.net/articles/client-data-on-personal-phones/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/client-data-on-personal-phones/</guid><description>BYOD mail and Teams are convenient. Containerization and remote wipe need to be real.</description><pubDate>Fri, 26 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>microsoft-365</category><category>mobile</category><author>Michael Narehood</author></item><item><title>Firewall rule reviews that find surprises</title><link>https://insights.qutzl.net/articles/firewall-rule-reviews/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/firewall-rule-reviews/</guid><description>Any-any rules and forgotten NAT entries accumulate. Schedule the cleanup.</description><pubDate>Wed, 24 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>networking</category><category>security</category><author>Michael Narehood</author></item><item><title>SaaS admin account hygiene</title><link>https://insights.qutzl.net/articles/saas-admin-account-hygiene/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/saas-admin-account-hygiene/</guid><description>Separate admin identities and turn off unused seats before attackers find them.</description><pubDate>Mon, 22 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>saas</category><author>Michael Narehood</author></item><item><title>Incident first-hour checklist</title><link>https://insights.qutzl.net/articles/incident-first-hour-checklist/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/incident-first-hour-checklist/</guid><description>What to do in the first sixty minutes of a suspected breach.</description><pubDate>Fri, 19 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>msp</category><author>Michael Narehood</author></item><item><title>Power Automate and OAuth app sprawl</title><link>https://insights.qutzl.net/articles/power-automate-and-oauth-sprawl/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/power-automate-and-oauth-sprawl/</guid><description>Citizen automation is great until a forgotten flow holds privileged consent.</description><pubDate>Wed, 17 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>security</category><author>Michael Narehood</author></item><item><title>Tabletop incident exercise for five people</title><link>https://insights.qutzl.net/articles/tabletop-incident-exercise-for-five-people/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/tabletop-incident-exercise-for-five-people/</guid><description>A one-hour script to practice ransomware or BEC response without breaking production.</description><pubDate>Mon, 15 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Backups &amp; Continuity</category><category>security</category><category>business-continuity</category><category>msp</category><author>Michael Narehood</author></item><item><title>Website TLS certificates: expiration discipline</title><link>https://insights.qutzl.net/articles/website-tls-certificates-expiration-discipline/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/website-tls-certificates-expiration-discipline/</guid><description>Auto-renew usually works until it does not. A lightweight checklist so HTTPS does not expire on a holiday.</description><pubDate>Fri, 12 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Hosting</category><category>hosting</category><category>networking</category><author>Michael Narehood</author></item><item><title>Detecting unusual sign-ins in Microsoft 365</title><link>https://insights.qutzl.net/articles/detecting-unusual-sign-ins-in-microsoft-365/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/detecting-unusual-sign-ins-in-microsoft-365/</guid><description>Impossible travel, new countries, and legacy protocol spikes: signals worth a human look.</description><pubDate>Wed, 10 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>security</category><category>identity</category><author>Michael Narehood</author></item><item><title>Immutable backups in plain English</title><link>https://insights.qutzl.net/articles/immutable-backups-in-plain-english/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/immutable-backups-in-plain-english/</guid><description>What “immutable” means, why ransomware crews target backups, and how SMBs get close without enterprise budgets.</description><pubDate>Mon, 08 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Backups &amp; Continuity</category><category>backups</category><category>ransomware</category><category>business-continuity</category><author>Michael Narehood</author></item><item><title>Voicemail and Teams phone security basics</title><link>https://insights.qutzl.net/articles/voicemail-and-teams-phone-security-basics/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/voicemail-and-teams-phone-security-basics/</guid><description>Toll fraud and voicemail hacks still happen. A short hardening list for modern phone systems.</description><pubDate>Fri, 05 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>security</category><category>microsoft-365</category><category>telephony</category><author>Michael Narehood</author></item><item><title>Website care: updates, plugins, and PHP versions</title><link>https://insights.qutzl.net/articles/website-care-updates-plugins-and-php/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/website-care-updates-plugins-and-php/</guid><description>How small business sites get owned, and a maintenance rhythm that prevents most of it.</description><pubDate>Wed, 03 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Hosting</category><category>wordpress</category><category>security</category><category>hosting</category><author>Michael Narehood</author></item><item><title>Summer interns and joiner access done safely</title><link>https://insights.qutzl.net/articles/summer-interns-and-joiner-access/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/summer-interns-and-joiner-access/</guid><description>Temporary staff need tools on day one, not permanent Global Admin on day ninety.</description><pubDate>Mon, 01 Jun 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>identity</category><category>security</category><category>microsoft-365</category><author>Michael Narehood</author></item><item><title>Decommissioning old servers safely</title><link>https://insights.qutzl.net/articles/decommissioning-old-servers/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/decommissioning-old-servers/</guid><description>Powering off is not decommissioning. Data remnants and DNS ghosts linger.</description><pubDate>Fri, 29 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>infrastructure</category><category>security</category><author>Michael Narehood</author></item><item><title>SharePoint permissions inheritance traps</title><link>https://insights.qutzl.net/articles/sharepoint-permissions-inheritance-traps/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/sharepoint-permissions-inheritance-traps/</guid><description>Broken inheritance solves one share and creates ten mysteries.</description><pubDate>Wed, 27 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>collaboration</category><author>Michael Narehood</author></item><item><title>Teams external access settings worth reviewing</title><link>https://insights.qutzl.net/articles/teams-external-access-settings/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/teams-external-access-settings/</guid><description>Federation and guest access are powerful, and easy to leave too open.</description><pubDate>Mon, 25 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>security</category><author>Michael Narehood</author></item><item><title>USB and removable media policy</title><link>https://insights.qutzl.net/articles/usb-and-removable-media-policy/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/usb-and-removable-media-policy/</guid><description>Block-all vs allow-with-logging: picking a control that matches your risk.</description><pubDate>Fri, 22 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>endpoints</category><author>Michael Narehood</author></item><item><title>Choosing managed DNS wisely</title><link>https://insights.qutzl.net/articles/choosing-managed-dns-wisely/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/choosing-managed-dns-wisely/</guid><description>Registrar default DNS is fine until you need fast changes, DNSSEC, or failover. What to evaluate.</description><pubDate>Wed, 20 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Hosting</category><category>dns</category><category>infrastructure</category><author>Michael Narehood</author></item><item><title>Microsoft Secure Score: what to prioritize (and ignore)</title><link>https://insights.qutzl.net/articles/microsoft-secure-score-what-to-ignore/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/microsoft-secure-score-what-to-ignore/</guid><description>Secure Score is a guide, not a grade. Which recommendations move risk for small tenants.</description><pubDate>Mon, 18 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>security</category><author>Michael Narehood</author></item><item><title>After-hours patching without surprising Monday</title><link>https://insights.qutzl.net/articles/after-hours-patching-windows/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/after-hours-patching-windows/</guid><description>How to schedule Windows updates so reboots happen when people are gone and still finish.</description><pubDate>Fri, 15 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>patching</category><category>windows</category><category>msp</category><author>Michael Narehood</author></item><item><title>Calendar permissions: the oversharing nobody notices</title><link>https://insights.qutzl.net/articles/calendar-permissions-oversharing/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/calendar-permissions-oversharing/</guid><description>Open calendars leak meetings, clients, and travel plans. Tighten defaults without killing scheduling.</description><pubDate>Wed, 13 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>privacy</category><category>security</category><author>Michael Narehood</author></item><item><title>Choosing a business ISP failover plan</title><link>https://insights.qutzl.net/articles/choosing-a-business-isp-failover-plan/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/choosing-a-business-isp-failover-plan/</guid><description>Cable + LTE/5G failover patterns that keep payments and cloud apps online when the primary circuit dies.</description><pubDate>Mon, 11 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>networking</category><category>business-continuity</category><author>Michael Narehood</author></item><item><title>Printers on the network are still computers</title><link>https://insights.qutzl.net/articles/printers-on-the-network-are-still-computers/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/printers-on-the-network-are-still-computers/</guid><description>Default passwords, ancient firmware, and flat VLANs turn MFPs into quiet pivot points.</description><pubDate>Fri, 08 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>security</category><category>networking</category><author>Michael Narehood</author></item><item><title>Secure remote support: what to expect from a good session</title><link>https://insights.qutzl.net/articles/secure-remote-support-expectations/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/secure-remote-support-expectations/</guid><description>How remote assistance should work when you care about consent, audit trails, and least privilege.</description><pubDate>Wed, 06 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>msp</category><category>security</category><category>remote-support</category><author>Michael Narehood</author></item><item><title>Endpoint detection vs antivirus: what SMBs actually need</title><link>https://insights.qutzl.net/articles/endpoint-detection-vs-antivirus/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/endpoint-detection-vs-antivirus/</guid><description>Signature AV alone is not enough. How EDR changes outcomes without requiring a SOC theater budget.</description><pubDate>Mon, 04 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>security</category><category>endpoints</category><author>Michael Narehood</author></item><item><title>Microsoft 365 backup: questions to ask before you buy</title><link>https://insights.qutzl.net/articles/microsoft-365-backup-questions-to-ask/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/microsoft-365-backup-questions-to-ask/</guid><description>Retention myths, Recycle Bin limits, and the vendor questions that separate marketing from recoverability.</description><pubDate>Fri, 01 May 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Backups &amp; Continuity</category><category>microsoft-365</category><category>backups</category><author>Michael Narehood</author></item><item><title>Guest Wi‑Fi terms and logging</title><link>https://insights.qutzl.net/articles/guest-wifi-terms-and-logging/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/guest-wifi-terms-and-logging/</guid><description>Captive portals are not only marketing: they set expectations and basic accountability.</description><pubDate>Wed, 29 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>networking</category><category>compliance</category><author>Michael Narehood</author></item><item><title>Time to rotate service account passwords</title><link>https://insights.qutzl.net/articles/time-to-rotate-service-account-passwords/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/time-to-rotate-service-account-passwords/</guid><description>Service accounts with never-expiring passwords become permanent backdoors.</description><pubDate>Mon, 27 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>identity</category><author>Michael Narehood</author></item><item><title>Browser extension risk at work</title><link>https://insights.qutzl.net/articles/browser-extension-risk/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/browser-extension-risk/</guid><description>Helpful toolbars are supply-chain risk. How to set a sane policy.</description><pubDate>Fri, 24 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>endpoints</category><author>Michael Narehood</author></item><item><title>Project Glasswing and the patch queue your business will feel anyway</title><link>https://insights.qutzl.net/articles/project-glasswing-defensive-ai/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/project-glasswing-defensive-ai/</guid><description>Anthropic&apos;s April 2026 Project Glasswing put Claude Mythos Preview to work finding critical flaws with major vendors. What that means for downstream patching at ordinary SMBs.</description><pubDate>Wed, 22 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>ai</category><category>vulnerability-management</category><author>Michael Narehood</author></item><item><title>Wi‑Fi password rotation myths</title><link>https://insights.qutzl.net/articles/wifi-password-rotation-myths/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/wifi-password-rotation-myths/</guid><description>Rotating the PSK every week is not a strategy. Segmentation and enterprise auth are.</description><pubDate>Wed, 22 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>networking</category><category>security</category><author>Michael Narehood</author></item><item><title>IoT cameras and NVRs on your LAN</title><link>https://insights.qutzl.net/articles/iot-cameras-and-nvrs-on-your-lan/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/iot-cameras-and-nvrs-on-your-lan/</guid><description>Default passwords and UPnP still ship with many “security” cameras. Segment them before they segment you.</description><pubDate>Mon, 20 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>security</category><category>networking</category><category>iot</category><author>Michael Narehood</author></item><item><title>Separating Wi‑Fi for POS and office</title><link>https://insights.qutzl.net/articles/separating-wifi-for-pos-and-office/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/separating-wifi-for-pos-and-office/</guid><description>Payment devices and office laptops should not share a flat network. A practical segmentation sketch.</description><pubDate>Fri, 17 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>networking</category><category>security</category><category>compliance</category><author>Michael Narehood</author></item><item><title>Verify your backups before you need them</title><link>https://insights.qutzl.net/articles/verify-your-backups-before-you-need-them/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/verify-your-backups-before-you-need-them/</guid><description>A short tutorial for confirming that business backups actually restore, not just that a green checkmark appeared overnight.</description><pubDate>Wed, 15 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Backups &amp; Continuity</category><category>backups</category><category>business-continuity</category><author>Michael Narehood</author></item><item><title>Cyber insurance questions before renewal</title><link>https://insights.qutzl.net/articles/cyber-insurance-questions-before-renewal/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/cyber-insurance-questions-before-renewal/</guid><description>MFA, EDR, and backup proof: what underwriters ask and how to answer without scrambling.</description><pubDate>Mon, 13 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Backups &amp; Continuity</category><category>security</category><category>compliance</category><category>business-continuity</category><author>Michael Narehood</author></item><item><title>Vendor access offboarding checklist</title><link>https://insights.qutzl.net/articles/vendor-access-offboarding-checklist/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/vendor-access-offboarding-checklist/</guid><description>Contractors and MSPs change. Make sure their VPN, admin, and SaaS access changes with them.</description><pubDate>Fri, 10 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>vendors</category><category>identity</category><author>Michael Narehood</author></item><item><title>Cloud storage sync is not a backup</title><link>https://insights.qutzl.net/articles/cloud-storage-sync-is-not-a-backup/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/cloud-storage-sync-is-not-a-backup/</guid><description>OneDrive and Google Drive mirror mistakes as efficiently as they mirror files. What real backup adds.</description><pubDate>Wed, 08 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Backups &amp; Continuity</category><category>backups</category><category>microsoft-365</category><category>business-continuity</category><author>Michael Narehood</author></item><item><title>Wi‑Fi guest networks done right</title><link>https://insights.qutzl.net/articles/wifi-guest-networks-done-right/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/wifi-guest-networks-done-right/</guid><description>Separate guests from production without making the lobby password a company secret.</description><pubDate>Mon, 06 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>networking</category><category>security</category><author>Michael Narehood</author></item><item><title>Ransomware-ready in ninety minutes</title><link>https://insights.qutzl.net/articles/ransomware-ready-in-ninety-minutes/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/ransomware-ready-in-ninety-minutes/</guid><description>A focused working session to improve your odds before an incident, not a multi-month maturity model.</description><pubDate>Fri, 03 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Backups &amp; Continuity</category><category>security</category><category>ransomware</category><category>business-continuity</category><author>Michael Narehood</author></item><item><title>Spring cleaning for Active Directory and Entra ID</title><link>https://insights.qutzl.net/articles/spring-cleaning-for-active-directory-and-entra/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/spring-cleaning-for-active-directory-and-entra/</guid><description>Disable stale accounts, reclaim licenses, and shrink attack surface before summer projects start.</description><pubDate>Wed, 01 Apr 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>identity</category><category>security</category><author>Michael Narehood</author></item><item><title>VPN split tunneling tradeoffs</title><link>https://insights.qutzl.net/articles/vpn-split-tunneling-tradeoffs/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/vpn-split-tunneling-tradeoffs/</guid><description>Full tunnel vs split tunnel is a security and performance comparison. Make it on purpose.</description><pubDate>Mon, 30 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>networking</category><category>remote-work</category><category>security</category><author>Michael Narehood</author></item><item><title>Patching NAS devices</title><link>https://insights.qutzl.net/articles/patching-nas-devices/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/patching-nas-devices/</guid><description>NAS firmware holes are quiet until ransomware finds the share.</description><pubDate>Fri, 27 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>security</category><category>backups</category><category>infrastructure</category><author>Michael Narehood</author></item><item><title>Malware, macros, and Office defaults</title><link>https://insights.qutzl.net/articles/malware-macros-and-office-defaults/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/malware-macros-and-office-defaults/</guid><description>Block macros from the internet. Your 2014 workflow may need a redesign.</description><pubDate>Wed, 25 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>endpoints</category><author>Michael Narehood</author></item><item><title>Offboarding: same-day access cut</title><link>https://insights.qutzl.net/articles/offboarding-same-day-access-cut/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/offboarding-same-day-access-cut/</guid><description>Why delayed disablement is a predictable incident.</description><pubDate>Mon, 23 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>identity</category><category>security</category><author>Michael Narehood</author></item><item><title>Email retention vs archive confusion</title><link>https://insights.qutzl.net/articles/email-retention-vs-archive-confusion/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/email-retention-vs-archive-confusion/</guid><description>Litigation holds, archives, and “we keep mail forever”: clarify before you need eDiscovery.</description><pubDate>Fri, 20 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>compliance</category><author>Michael Narehood</author></item><item><title>The 3-2-1 backup rule still works</title><link>https://insights.qutzl.net/articles/backup-3-2-1-rule-still-works/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/backup-3-2-1-rule-still-works/</guid><description>Three copies, two media, one offsite, updated for cloud and ransomware realities.</description><pubDate>Wed, 18 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Backups &amp; Continuity</category><category>backups</category><category>business-continuity</category><author>Michael Narehood</author></item><item><title>Quarterly access reviews without the enterprise bloat</title><link>https://insights.qutzl.net/articles/quarterly-access-reviews-without-the-enterprise-bloat/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/quarterly-access-reviews-without-the-enterprise-bloat/</guid><description>A two-hour quarterly ritual that catches privilege creep before an audit or an attacker does.</description><pubDate>Mon, 16 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>identity</category><category>security</category><category>msp</category><author>Michael Narehood</author></item><item><title>Secure document sharing with clients</title><link>https://insights.qutzl.net/articles/secure-document-sharing-with-clients/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/secure-document-sharing-with-clients/</guid><description>Move past email attachments for sensitive files without making clients jump through hoops.</description><pubDate>Fri, 13 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>microsoft-365</category><category>collaboration</category><author>Michael Narehood</author></item><item><title>When to replace that aging firewall</title><link>https://insights.qutzl.net/articles/when-to-replace-that-aging-firewall/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/when-to-replace-that-aging-firewall/</guid><description>End-of-support appliances quietly become unpatchable internet doors. How to plan a refresh without drama.</description><pubDate>Wed, 11 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>networking</category><category>security</category><category>infrastructure</category><author>Michael Narehood</author></item><item><title>DNS and email authentication: SPF, DKIM, and DMARC</title><link>https://insights.qutzl.net/articles/dns-and-email-authentication-spf-dkim-dmarc/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/dns-and-email-authentication-spf-dkim-dmarc/</guid><description>A plain-language tour of the three records that decide whether your mail looks legitimate.</description><pubDate>Mon, 09 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>email</category><category>dns</category><category>security</category><author>Michael Narehood</author></item><item><title>Microsoft 365 external sharing defaults that save headaches</title><link>https://insights.qutzl.net/articles/microsoft-365-external-sharing-defaults/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/microsoft-365-external-sharing-defaults/</guid><description>SharePoint and OneDrive sharing settings that balance client collaboration with least privilege.</description><pubDate>Fri, 06 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>security</category><author>Michael Narehood</author></item><item><title>Business email compromise: red flags worth a phone call</title><link>https://insights.qutzl.net/articles/business-email-compromise-red-flags/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/business-email-compromise-red-flags/</guid><description>The phrases and patterns that should trigger a pause before anyone moves money.</description><pubDate>Wed, 04 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>email</category><category>fraud</category><author>Michael Narehood</author></item><item><title>Tax season: protect the files accountants touch</title><link>https://insights.qutzl.net/articles/tax-season-protect-the-files-accountants-touch/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/tax-season-protect-the-files-accountants-touch/</guid><description>CPAs and bookkeepers become high-value targets each spring. Harden the paths to returns and source docs.</description><pubDate>Mon, 02 Mar 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>compliance</category><category>backups</category><author>Michael Narehood</author></item><item><title>Legacy TLS and payment tools</title><link>https://insights.qutzl.net/articles/legacy-tls-and-payment-tools/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/legacy-tls-and-payment-tools/</guid><description>Old TLS versions linger in niche payment and LOB software. Plan the break.</description><pubDate>Fri, 27 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Hosting</category><category>security</category><category>compliance</category><author>Michael Narehood</author></item><item><title>Monitoring what matters for SMBs</title><link>https://insights.qutzl.net/articles/monitoring-what-matters-for-smbs/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/monitoring-what-matters-for-smbs/</guid><description>Disk full and certificate expiry beat vanity dashboards.</description><pubDate>Wed, 25 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>msp</category><category>infrastructure</category><author>Michael Narehood</author></item><item><title>IT onboarding checklist for new hires</title><link>https://insights.qutzl.net/articles/onboarding-checklist-for-new-hires-it/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/onboarding-checklist-for-new-hires-it/</guid><description>Day-one access without day-one admin rights.</description><pubDate>Mon, 23 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>msp</category><category>identity</category><author>Michael Narehood</author></item><item><title>Documenting your network for the next person</title><link>https://insights.qutzl.net/articles/documenting-your-network-for-the-next-person/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/documenting-your-network-for-the-next-person/</guid><description>A one-page network truth file beats a heroic tribal-knowledge culture.</description><pubDate>Fri, 20 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>msp</category><category>infrastructure</category><author>Michael Narehood</author></item><item><title>Shadow IT and SaaS sprawl</title><link>https://insights.qutzl.net/articles/shadow-it-saas-sprawl/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/shadow-it-saas-sprawl/</guid><description>Credit-card SaaS purchases create data and identity debt. How to see it without becoming the department of no.</description><pubDate>Wed, 18 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>saas</category><category>msp</category><author>Michael Narehood</author></item><item><title>Line-of-business apps and unsupported Windows</title><link>https://insights.qutzl.net/articles/line-of-business-apps-and-unsupported-windows/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/line-of-business-apps-and-unsupported-windows/</guid><description>When one ancient app pins you to an old OS, and exit ramps that are less painful than denial.</description><pubDate>Mon, 16 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>windows</category><category>security</category><category>infrastructure</category><author>Michael Narehood</author></item><item><title>Why SMS MFA is a stopgap</title><link>https://insights.qutzl.net/articles/why-sms-mfa-is-a-stopgap/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/why-sms-mfa-is-a-stopgap/</guid><description>SIM swaps and SS7 abuse make text-message codes weaker than app-based or FIDO MFA.</description><pubDate>Fri, 13 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>mfa</category><author>Michael Narehood</author></item><item><title>Laptop encryption checklist</title><link>https://insights.qutzl.net/articles/laptop-encryption-checklist/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/laptop-encryption-checklist/</guid><description>BitLocker and FileVault basics so a stolen laptop is an inconvenience, not a breach notification.</description><pubDate>Wed, 11 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>security</category><category>endpoints</category><author>Michael Narehood</author></item><item><title>VPN vs zero trust for small firms</title><link>https://insights.qutzl.net/articles/vpn-vs-zero-trust-for-small-firms/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/vpn-vs-zero-trust-for-small-firms/</guid><description>When a classic VPN is enough, when it becomes a liability, and what “zero trust” means without the buzzwords.</description><pubDate>Mon, 09 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Networking</category><category>networking</category><category>security</category><category>remote-work</category><author>Michael Narehood</author></item><item><title>Phishing simulations without shaming people</title><link>https://insights.qutzl.net/articles/phishing-simulations-without-shaming-people/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/phishing-simulations-without-shaming-people/</guid><description>How to run awareness tests that improve reporting rates instead of breeding resentment.</description><pubDate>Fri, 06 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>training</category><author>Michael Narehood</author></item><item><title>Patch Tuesday habits for busy offices</title><link>https://insights.qutzl.net/articles/patch-tuesday-habits-for-busy-offices/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/patch-tuesday-habits-for-busy-offices/</guid><description>A lightweight cadence so Windows and Microsoft 365 updates do not become quarterly fire drills.</description><pubDate>Wed, 04 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>patching</category><category>windows</category><category>microsoft-365</category><author>Michael Narehood</author></item><item><title>Why local admin rights still matter</title><link>https://insights.qutzl.net/articles/why-local-admin-rights-still-matter/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/why-local-admin-rights-still-matter/</guid><description>Ransomware and commodity malware love over-privileged users. How to shrink admin without breaking work.</description><pubDate>Mon, 02 Feb 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>security</category><category>endpoints</category><author>Michael Narehood</author></item><item><title>Password managers for teams under twenty</title><link>https://insights.qutzl.net/articles/password-managers-for-teams-under-twenty/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/password-managers-for-teams-under-twenty/</guid><description>A practical way to kill shared spreadsheets without enterprise IAM theater.</description><pubDate>Fri, 30 Jan 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>security</category><category>passwords</category><author>Michael Narehood</author></item><item><title>Winter outage season: UPS and generator basics</title><link>https://insights.qutzl.net/articles/winter-outage-season-ups-and-generators/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/winter-outage-season-ups-and-generators/</guid><description>Cold-weather power events take down offices that thought “the cloud” made on-site power irrelevant.</description><pubDate>Wed, 28 Jan 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>infrastructure</category><category>business-continuity</category><author>Michael Narehood</author></item><item><title>Shared mailboxes are not a security boundary</title><link>https://insights.qutzl.net/articles/shared-mailboxes-are-not-a-security-boundary/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/shared-mailboxes-are-not-a-security-boundary/</guid><description>Why “just use the info@ mailbox” creates audit and access problems, and cleaner patterns that scale.</description><pubDate>Mon, 26 Jan 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>email</category><author>Michael Narehood</author></item><item><title>MFA fatigue and how to stop push bombing</title><link>https://insights.qutzl.net/articles/mfa-fatigue-and-how-to-stop-push-bombing/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/mfa-fatigue-and-how-to-stop-push-bombing/</guid><description>Attackers spam approve prompts until someone taps Yes. How number matching and better MFA choices help.</description><pubDate>Fri, 23 Jan 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>microsoft-365</category><category>mfa</category><author>Michael Narehood</author></item><item><title>New-year security habits that actually stick</title><link>https://insights.qutzl.net/articles/new-year-security-habits-that-actually-stick/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/new-year-security-habits-that-actually-stick/</guid><description>Skip the resolutions theater. Five security habits SMBs can keep through February and beyond.</description><pubDate>Wed, 21 Jan 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>msp</category><author>Michael Narehood</author></item><item><title>Welcome to Qutzl Insights</title><link>https://insights.qutzl.net/articles/welcome-to-qutzl-insights/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/welcome-to-qutzl-insights/</guid><description>What this publication is for, how we write, and what small-business IT topics you can expect next.</description><pubDate>Mon, 19 Jan 2026 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Announcements</category><category>announcements</category><category>msp</category><author>Michael Narehood</author></item><item><title>Apple Releases iOS 26</title><link>https://insights.qutzl.net/articles/apple-releases-ios-26/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/apple-releases-ios-26/</guid><description>iOS 26 arrived on September 15, 2025 with Liquid Glass design, Phone and Messages upgrades, Apple Intelligence improvements, and a new Games app.</description><pubDate>Mon, 15 Sep 2025 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Apple</category><category>ios</category><category>apple</category><category>apple-intelligence</category><author>Michael Narehood</author></item><item><title>Chrome zero-day patch habits for small offices</title><link>https://insights.qutzl.net/articles/google-chrome-zero-day-patch-habits/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/google-chrome-zero-day-patch-habits/</guid><description>Emergency browser updates do not wait for Patch Tuesday. How SMBs should force Chrome updates, control extensions, and close the relaunch gap before attackers do.</description><pubDate>Wed, 20 Aug 2025 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>chrome</category><category>browsers</category><category>patching</category><category>security</category><author>Michael Narehood</author></item><item><title>AI IDEs for ops scripts: useful drafts, dangerous shortcuts</title><link>https://insights.qutzl.net/articles/cursor-ai-ide-for-ops-scripts/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/cursor-ai-ide-for-ops-scripts/</guid><description>Cursor and similar tools can speed up PowerShell and bash work for MSPs, but only if you review output, protect secrets, and treat suggestions as starting points.</description><pubDate>Tue, 06 May 2025 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>AI &amp; ML</category><category>ai</category><category>developer-tools</category><category>automation</category><author>Michael Narehood</author></item><item><title>Ubuntu 25.04 (Plucky Puffin): what&apos;s new and when to use it</title><link>https://insights.qutzl.net/articles/ubuntu-25-04-whats-new/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/ubuntu-25-04-whats-new/</guid><description>Ubuntu 25.04 shipped in April 2025 with GNOME 48, Linux 6.14, and refreshed toolchains. Here&apos;s when it fits your lab versus staying on 24.04 LTS.</description><pubDate>Fri, 18 Apr 2025 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Linux</category><category>ubuntu</category><category>linux</category><category>desktop</category><author>Michael Narehood</author></item><item><title>Copilot for Microsoft 365 in SMB reality</title><link>https://insights.qutzl.net/articles/microsoft-365-copilot-smb-reality/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/microsoft-365-copilot-smb-reality/</guid><description>What Copilot actually costs, how it uses your tenant data, and when it helps small teams versus generating expensive drafts nobody trusts.</description><pubDate>Wed, 12 Mar 2025 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft 365</category><category>microsoft-365</category><category>copilot</category><category>ai</category><category>msp</category><author>Michael Narehood</author></item><item><title>When Cloudflare Workers makes sense for small teams</title><link>https://insights.qutzl.net/articles/cloudflare-workers-for-small-teams/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/cloudflare-workers-for-small-teams/</guid><description>Workers can replace a surprising amount of API and edge logic, but it is not a default for every app. A practical guide to when serverless at the edge beats traditional hosting.</description><pubDate>Wed, 12 Feb 2025 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Cloud &amp; DevOps</category><category>cloudflare</category><category>workers</category><category>serverless</category><category>devops</category><author>Michael Narehood</author></item><item><title>DeepSeek R1 and the open-weight reasoning wave</title><link>https://insights.qutzl.net/articles/deepseek-r1-open-models/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/deepseek-r1-open-models/</guid><description>DeepSeek&apos;s R1 models got ops and dev teams paying attention. Here is why, plus sober notes on local vs API use and why client data does not belong in random endpoints.</description><pubDate>Tue, 28 Jan 2025 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>AI &amp; ML</category><category>ai</category><category>deepseek</category><category>open-source</category><category>llm</category><author>Michael Narehood</author></item><item><title>Nintendo Switch 2 reveal roundup: what we know so far</title><link>https://insights.qutzl.net/articles/nintendo-switch-2-reveal-roundup/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/nintendo-switch-2-reveal-roundup/</guid><description>Nintendo&apos;s January 2025 first look at Switch 2: release timing, backward compatibility, and what the reveal video actually showed.</description><pubDate>Thu, 16 Jan 2025 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Gaming</category><category>gaming</category><category>nintendo</category><category>hardware</category><author>Michael Narehood</author></item><item><title>Steam Deck OLED as a daily handheld, one year on</title><link>https://insights.qutzl.net/articles/steam-deck-oled-daily-driver/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/steam-deck-oled-daily-driver/</guid><description>After a year with Valve&apos;s OLED revision: battery life, the screen, Dock and Desktop Mode for light work, and whether it earns a spot in a family PC lineup.</description><pubDate>Wed, 20 Nov 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Gaming</category><category>gaming</category><category>steam-deck</category><category>handheld</category><author>Michael Narehood</author></item><item><title>PlayStation 5 Pro launch: who it&apos;s for</title><link>https://insights.qutzl.net/articles/playstation-5-pro-launch/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/playstation-5-pro-launch/</guid><description>Sony&apos;s PS5 Pro arrived in November 2024 with a faster GPU and AI upscaling. A plain-language guide for households deciding between Pro, Slim, and keeping what they have.</description><pubDate>Fri, 08 Nov 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Gaming</category><category>gaming</category><category>playstation</category><category>hardware</category><author>Michael Narehood</author></item><item><title>Windows Server 2025 Released</title><link>https://insights.qutzl.net/articles/windows-server-2025-released/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/windows-server-2025-released/</guid><description>Microsoft’s Windows Server 2025 LTSC release brings hotpatching, stronger Active Directory and SMB security, hybrid cloud options, and a 180-day evaluation download.</description><pubDate>Sat, 02 Nov 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>windows-server</category><category>microsoft</category><category>security</category><author>Michael Narehood</author></item><item><title>Apple Intelligence on work iPhones and Macs</title><link>https://insights.qutzl.net/articles/apple-intelligence-on-work-devices/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/apple-intelligence-on-work-devices/</guid><description>Apple Intelligence landed in late 2024 with on-device models and Private Cloud Compute. What MDM admins should decide before enabling it on managed devices.</description><pubDate>Tue, 29 Oct 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Apple</category><category>apple</category><category>ai</category><category>privacy</category><category>ios</category><category>macos</category><author>Michael Narehood</author></item><item><title>Ubuntu 24.10 Is Now Available</title><link>https://insights.qutzl.net/articles/ubuntu-24-10-is-now-available/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/ubuntu-24-10-is-now-available/</guid><description>Highlights from Ubuntu 24.10 (Oracular Oriole), including Linux 6.11, GNOME 47, Wayland by default, and security improvements.</description><pubDate>Thu, 10 Oct 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Linux</category><category>ubuntu</category><category>linux</category><category>desktop</category><author>Michael Narehood</author></item><item><title>Vates Announces the General Release of XCP-ng 8.3</title><link>https://insights.qutzl.net/articles/xcp-ng-8-3-release/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/xcp-ng-8-3-release/</guid><description>An overview of XCP-ng 8.3: updated Xen and kernel stack, security and performance improvements, LTS direction, install/upgrade notes, and what to check before you move.</description><pubDate>Tue, 08 Oct 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Linux</category><category>xcp-ng</category><category>virtualization</category><category>xen</category><author>Michael Narehood</author></item><item><title>Windows 11 24H2 upgrade planning for SMBs</title><link>https://insights.qutzl.net/articles/windows-11-24h2-upgrade-planning/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/windows-11-24h2-upgrade-planning/</guid><description>Microsoft&apos;s 2024 feature update is not a click-and-forget release. Pilot rings, app friction, and how to avoid surprise broad enablement on busy fleets.</description><pubDate>Sat, 05 Oct 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Microsoft</category><category>windows</category><category>microsoft</category><category>patching</category><author>Michael Narehood</author></item><item><title>Apple Releases iOS 18.0.1</title><link>https://insights.qutzl.net/articles/apple-releases-ios-18-0-1/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/apple-releases-ios-18-0-1/</guid><description>iOS 18.0.1 fixes iPhone 16 touchscreen and camera issues, Messages crashes, performance problems, and important security bugs in Messages and Passwords.</description><pubDate>Thu, 03 Oct 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Apple</category><category>ios</category><category>apple</category><category>security</category><author>Michael Narehood</author></item><item><title>How to install Xen Orchestra for XCP-ng</title><link>https://insights.qutzl.net/articles/install-xen-orchestra-for-xcp-ng/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/install-xen-orchestra-for-xcp-ng/</guid><description>What Xen Orchestra is, why Xen Tools matter, the VM sizing to use, and a straightforward path to install XO for managing your XCP-ng hosts.</description><pubDate>Sun, 29 Sep 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Linux</category><category>xcp-ng</category><category>xen-orchestra</category><category>virtualization</category><author>Michael Narehood</author></item><item><title>macOS Sequoia for business Mac fleets</title><link>https://insights.qutzl.net/articles/macos-sequoia-for-business-macs/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/macos-sequoia-for-business-macs/</guid><description>macOS 15 is GA with iPhone Mirroring, a Passwords app, and continuity changes IT should pilot before a broad upgrade.</description><pubDate>Fri, 20 Sep 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Apple</category><category>macos</category><category>apple</category><category>endpoints</category><category>security</category><author>Michael Narehood</author></item><item><title>OpenAI o1 and reasoning models: worth it for your team?</title><link>https://insights.qutzl.net/articles/openai-o1-reasoning-models/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/openai-o1-reasoning-models/</guid><description>OpenAI&apos;s o1 preview changed how some tasks get done. Here is what is different from ChatGPT, where the cost makes sense, and where it is overkill for everyday MSP work.</description><pubDate>Fri, 13 Sep 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>AI &amp; ML</category><category>openai</category><category>ai</category><category>llm</category><author>Michael Narehood</author></item><item><title>5 Must-Have Plugins for Every WordPress Installation</title><link>https://insights.qutzl.net/articles/essential-wordpress-plugins/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/essential-wordpress-plugins/</guid><description>A practical shortlist of WordPress plugins for security, Google insights, SEO, legal pages, and caching: what each one does and when Premium is worth it.</description><pubDate>Thu, 12 Sep 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Hosting</category><category>wordpress</category><category>seo</category><category>security</category><author>Michael Narehood</author></item><item><title>Black Myth: Wukong launch week: PC ops notes, not a review</title><link>https://insights.qutzl.net/articles/black-myth-wukong-pc-launch/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/black-myth-wukong-pc-launch/</guid><description>Steam&apos;s biggest launch of 2024 hammered gaming PCs. Here is what to expect on performance, drivers, and the breakroom machine your staff keeps rebooting.</description><pubDate>Wed, 21 Aug 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Gaming</category><category>gaming</category><category>pc</category><category>steam</category><author>Michael Narehood</author></item><item><title>CrowdStrike July 2024 outage: lessons for SMBs</title><link>https://insights.qutzl.net/articles/crowdstrike-july-2024-outage-lessons/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/crowdstrike-july-2024-outage-lessons/</guid><description>A bad Falcon content update crashed millions of Windows systems. Here is what small IT teams should change without turning it into blame theater.</description><pubDate>Mon, 22 Jul 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>endpoints</category><category>incident-response</category><category>windows</category><author>Michael Narehood</author></item><item><title>Firefox 128 ESR: what changed for enterprise deployments</title><link>https://insights.qutzl.net/articles/firefox-128-esr-enterprise/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/firefox-128-esr-enterprise/</guid><description>Mozilla&apos;s new ESR base landed in July 2024. Here is the cadence, extension policy work, and when ESR still beats rapid release for line-of-business apps.</description><pubDate>Wed, 10 Jul 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Software &amp; Releases</category><category>firefox</category><category>browsers</category><category>enterprise</category><author>Michael Narehood</author></item><item><title>Windows Recall paused: what it means for business</title><link>https://insights.qutzl.net/articles/windows-recall-paused-what-it-means/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/windows-recall-paused-what-it-means/</guid><description>Microsoft delayed Recall for Copilot+ PCs after privacy pushback. Here is what the feature does, why it spooked security folks, and how to evaluate new hardware.</description><pubDate>Fri, 14 Jun 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Consumer Tech</category><category>windows</category><category>privacy</category><category>microsoft</category><category>ai</category><author>Michael Narehood</author></item><item><title>Chrome Manifest V3: what actually changed for businesses</title><link>https://insights.qutzl.net/articles/chrome-manifest-v3-extension-reality/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/chrome-manifest-v3-extension-reality/</guid><description>Google finished the MV3 transition. Here is what broke, what still works, and a practical checklist for extension policy at work.</description><pubDate>Mon, 10 Jun 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Software &amp; Releases</category><category>chrome</category><category>browsers</category><category>security</category><category>extensions</category><author>Michael Narehood</author></item><item><title>Valkey vs Redis for new projects in 2024</title><link>https://insights.qutzl.net/articles/valkey-vs-redis-for-new-projects/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/valkey-vs-redis-for-new-projects/</guid><description>After Redis Inc. changed licensing, the Linux Foundation fork Valkey offers a BSD path forward. Here is when new builds should pick Valkey and when staying on Redis still makes sense.</description><pubDate>Wed, 15 May 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Cloud &amp; DevOps</category><category>redis</category><category>valkey</category><category>open-source</category><category>devops</category><author>Michael Narehood</author></item><item><title>XZ Utils backdoor: what ops should check</title><link>https://insights.qutzl.net/articles/xz-utils-backdoor-what-ops-should-check/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/xz-utils-backdoor-what-ops-should-check/</guid><description>CVE-2024-3094 hit rolling Linux distros hard. Here is what happened, who was exposed, and the checks SMB teams should run.</description><pubDate>Mon, 01 Apr 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Security</category><category>security</category><category>linux</category><category>supply-chain</category><category>cve</category><author>Michael Narehood</author></item><item><title>Redis licensing change: what app teams should decide</title><link>https://insights.qutzl.net/articles/redis-agpl-license-change/</link><guid isPermaLink="true">https://insights.qutzl.net/articles/redis-agpl-license-change/</guid><description>Redis moved new releases to RSALv2 and SSPLv1 in March 2024. Valkey forked the BSD line. Here is how to pick a path without panic.</description><pubDate>Mon, 25 Mar 2024 00:00:00 GMT</pubDate><dc:creator>Michael Narehood</dc:creator><category>Software &amp; Releases</category><category>redis</category><category>licensing</category><category>open-source</category><category>devops</category><author>Michael Narehood</author></item></channel></rss>