What's included in this month's insider?
As workloads grow and pressure builds, it’s easy for small but vital cyber security habits to slip through the cracks. This month, we’re shining a light on how burnout and busy schedules can quietly open the door to risk and what you can do to stay one step ahead.
Here’s what’s inside:
- Hidden cyber security risk – Why burnout could be your biggest threat
- Did you know? – Even Elmo needs cyber security training
- Hocus Focus – A behind-the-scenes look at our office murder mystery
- Technology update – Hotpatching now available in Windows Autopatch
- Quick IT tip – Keyboard shortcuts that actually save time
- Client feedback of the month – You vote, they win
- New to Microsoft – More control over built-in apps
- 5 cyber scams to watch out for – How criminals exploit busy teams
- Engineer insight – What Ryan wishes every business knew about IT security
Got a question about any of these? We’re only ever a quick message away.
The hidden cyber security risk in your business
Most small businesses think their cybersecurity is in good shape…
…until a routine check uncovers something unexpected.
Nine times out of ten, the cause isn’t bad technology.
It’s busy people.
When teams are flat out, juggling deadlines and trying to get everything done, the simple but important cyber habits get missed. Not because people don’t care, but because they’re stretched.
Examples like:
- A manager is delaying an update to finish a quote
- An accounts assistant is rushing through emails and clicking something suspicious
- Someone setting up a new device quickly so they can get back to their day
It’s not a tech problem.
It’s a time problem.
Cybersecurity relies on routine discipline. Applying updates, checking access, pausing to double check something unusual. When people are overloaded, those routines break down.
Attackers rely on this. Even basic scams only need one rushed moment.
The strongest protection doesn’t start with software. It starts with supporting your people, giving them clear priorities, and making cyber security easy to follow even on busy days.
When teams have the time and space to do things properly, those simple defences work exactly as they should.
If you want help staying on top of the basics without adding pressure to your team, we can help.
Did you know...
…even Elmo needs cyber security training?
Elmo, the lovable Sesame Street star, recently had his official X (formerly Twitter) account hacked. And some very un-family‑friendly posts were made.
Experts quickly pointed out that a simple security step called Two‑Factor Authentication (2FA) could have stopped the hackers. That’s the extra step where, after your password, you also need a code from your phone or an app to log in.
It’s a basic safeguard every business should use on social media, email, and banking accounts. And if it’s important enough for Elmo to learn, it’s definitely important for your team too.
Hocus Focus
Last week, the Focus team swapped laptops for magnifying glasses for a murder mystery game in the office, and it was brilliant.
There were clues to crack, suspects to interrogate, and more plot twists than a Netflix drama, all fuelled by plenty of Domino’s pizza.
Everyone got properly into character (some a little too well…), and by the end, we’d uncovered the culprit with plenty of laughs along the way.
It was a great reminder that teamwork isn’t just about solving IT problems; sometimes it’s about solving fake murders over a few slices of pizza.
We’ll definitely be doing it again, though next time we might need tighter security around the “crime scene”…
Technology update
Hotpatching is GO
Hotpatching is now part of Windows Autopatch, which you manage using Microsoft Intune (a tool to look after your company’s devices). This makes it easier to keep devices secure without stopping people from working.
What’s Hotpatching, you ask?
Hotpatching installs Windows quality updates in the background, without forcing a restart. Your team stays protected while staying productive.
Any new update policies created in Intune have this switched on by default. And existing policies can be updated by enabling the “apply without restarting the device (hotpatch)” option in the Intune admin centre.
It’s a simple change that helps reduce downtime and keeps your devices compliant with the latest security updates.
Quick IT Tip: Keyboard Shortcuts You’ll Actually Use
Here are a few hidden gems that can make your daily tasks a whole lot faster:
Windows
- Ctrl + Shift + T – Reopen the last browser tab you accidentally closed (yes, it works in most browsers).
- Windows + Ctrl + Shift + B – Restart your graphics driver instantly if your screen freezes or flickers (no reboot needed).
- Windows + . (period) – Open the emoji and symbol picker anywhere you can type.
- Windows + 1, 2, 3… – Open apps pinned to your taskbar based on their position (Windows + 1 opens the first one, and so on).
Mac
- Command + Shift + . (period) – Show or hide hidden files in Finder.
- Option + Shift + Volume Up/Down – Adjust your volume in smaller, precise steps.
- Control + Command + Space – Open the emoji picker anywhere you can type (great for quick reactions in Teams or Slack).
- Command + L – Highlight the URL bar instantly in your browser to type a new web address or search.
Client Feedback of the Month - You Vote, They Win!
Last month’s winner was Anthony Ward, with the following comment:
“Fast friendly service. Kept in contact from start to finish. Thanks.”
Anthony has been recognised for his excellent work and commitment to great communication from start to finish. A big well done from all of us at Focus!
Now it’s time to choose this month’s winner. Every time we support a client, they get the chance to leave a comment.
We’ve picked three that really stood out, and we’d love your help deciding which one deserves the top spot.
The engineer behind the winning comment gets a little thank-you from us, because great service deserves to be recognised.
New To Microsoft
More control over your software
Microsoft’s testing a new policy that could make it much easier to remove Windows built‑in apps you don’t want.
In a recent preview build, there’s an option called “Remove Default Microsoft Store packages from the system” tucked under Administrative Templates.
Turn it on, and it lets you tick apps like Teams, Weather, Xbox services, or even Snipping Tool and Paint (if you really want to). Then remove them in one go, instead of uninstalling each individually.
Core apps like Edge are still untouchable, and the feature is still in testing. But it’s a step toward giving businesses more control over the software on their devices.
5 cyber scams your business should watch out for
Cyber scams don’t need to be sophisticated to cause serious damage to a business.
In fact, many of today’s most effective scams rely on busy people making quick decisions and not having time to double‑check what they’re doing.
Staying informed is one of the best ways to stay protected.
So here are five scams we’re seeing right now:
- Robocall scams
With artificial intelligence, scammers can clone someone’s voice using only a short audio clip. You get a call that sounds exactly like a supplier or even a colleague, asking you to urgently confirm bank details. It feels genuine, but it isn’t.
Some scams even use this information to carry out a “SIM swap”, tricking a phone provider into moving your number to a criminal’s SIM card so they can intercept security codes.
- Crypto investment scams
A convincing email or social media post might offer an incredible return on a business investment. Some of these projects, known as “rug pulls”, are designed to collect funds and then disappear, leaving investors with nothing.
- Romance scams (sometimes called pig‑butchering scams)
These might sound unrelated to business, but they’re not. Scammers build trust over weeks or months, often through social media or messaging apps, and then persuade someone to share sensitive information or even send money.
In some cases, they use AI‑generated images or videos to make the scam more believable and later threaten to leak personal material unless they’re paid.
- Malvertising
Criminals hide malicious links inside paid ads on legitimate sites. An employee looking for a new supplier or tool could click an ad and unknowingly install malware onto a company laptop.
- Formjacking
This is where criminals inject code into an online checkout form to steal payment or login details. If staff buy supplies or services from websites that aren’t secure, those details can be intercepted.
The common thread is simple:
These scams exploit human attention and trust.
Regular reminders and training help staff stay alert, question unexpected requests, and think twice before clicking. A little extra caution can stop a scam before it starts.
We can help you make sure your team is vigilant about these scams and more?
We Asked Our Engineers: “What’s One Thing You Wish Clients Knew?”
This month, Ryan, one of our engineers, said:
“How company systems are actually breached and how easy it is to happen if they don’t invest in their IT. All businesses are a target for cyber crime.”
Cyber attacks aren’t just aimed at large corporations. Small and medium-sized businesses are often the easiest targets because attackers know their defences are weaker.
Here are a few quick reminders to keep your systems safe:
- Keep everything updated – software, operating systems, and security tools.
- Use multi-factor authentication wherever possible.
- Invest in proactive IT support to spot risks before they become real problems.