Blog
Business IT advice, in plain English
Practical guidance on cyber security, Microsoft 365 and getting more from your technology, written for North Wales business owners, not IT specialists.
Practical advice from the team behind our managed IT support and cyber security services. We back our advice with trusted sources like the NCSC. Need a hand rather than a how-to? Get in touch.
-
CybersecurityAndroid Microsoft 365 apps needed urgent patching, is yours up to date?
A debug flag left on in six Microsoft 365 Android apps let other apps silently steal login tokens. The patch is out, here’s what to check.
-
Microsoft 365Microsoft 365 is changing in June, what you need to do
Microsoft is retiring standalone OneDrive plans, Teams Live Events, and tweaking how some email and sync access works. Here’s what matters for your business.
-
Microsoft 365Microsoft Exchange Online email delays: what happened and what to do
On 2 June, Microsoft 365 email ground to a halt globally, with messages queuing for over an hour. Here’s what caused it and what to check in your account.
-
Compliance CybersecurityWindows domain controllers under active attack, is yours patched?
A critical Windows flaw is being actively exploited right now. The patch has been available for three weeks. Here’s what it means for your business and what.
-
CybersecurityLookalike domain scams: what your business needs to know
Attackers register near-identical misspellings of trusted company names to steal credentials. Standard email filters miss them. Here’s what actually helps.
-
Microsoft 365SharePoint authoritative sites: useful if you’re running Copilot
Microsoft’s new SharePoint feature lets you flag trusted content for Copilot to prioritise, worth knowing about if your business has Copilot licences active.
-
Software UpdatesWindows 11 finally lets you move the taskbar
Microsoft is testing a movable taskbar and leaner Start menu in Windows 11. Here’s what it means if your team has been resisting the upgrade.
-
Software UpdatesWindows 11 KB5089573: Worth rolling out now, don’t wait for June
Optional update hitting Windows 11 machines in May brings measurable app-launch and login speed boosts. Since it won’t auto-deploy, you need to push it to.
-
Introducing Cadarn IT: Specialist IT Support for North Wales Accountancy Practices
We’ve launched Cadarn IT, a dedicated brand bringing focused IT support and cyber security to accountancy practices across North Wales.
-
Software UpdatesWindows 11 KB5089573: The update that actually speeds things up
Microsoft’s latest update tackles the sluggishness that’s haunted Windows 11 since launch. Start menu and apps open faster, no hardware upgrade needed.
-
CybersecurityYour staff are the target: defending against voice phishing
Criminals aren’t hacking your firewall, they’re ringing your team. Voice phishing is on the rise and your staff are the way in.
-
Software UpdatesKB5087424 breaks printing on Windows Server 2022, what to do
Microsoft’s May 2026 hotpatch KB5087424 is breaking 32-bit printer drivers on Server 2022. If printing has stopped, here are your options.
-
CybersecurityPassword plus two-factor isn’t enough: what to do about Kali365
A phishing kit called Kali365 is bypassing Microsoft 365 two-factor by stealing login tokens. Here’s what North Wales businesses need to do about it.
-
Cybersecurity Software UpdatesThree critical patches your website and file-sharing can’t wait on
Ghost CMS, Joomla and SharePoint Server all have serious flaws under active attack right now. Here’s what to check before the end of the week.
-
CybersecurityMFA doesn’t stop voice-call scams, here’s what does
Stolen credentials and a barrage of fake voice-call prompts nearly bypassed MFA. Why voice and SMS codes are the weakest link, and what to use instead.
-
CybersecuritySonicWall VPN attacks are spiking: here’s what to do this week
Attackers are hammering SonicWall VPN devices with stolen passwords and getting in fast. If your business uses one for remote access, there are five things.
-
CybersecurityKali365: the phishing kit bypassing Microsoft 365 security
A new phishing kit called Kali365 can hijack Microsoft 365 accounts even when MFA is on. Here’s how it works and what actually stops it.
-
Cybersecurity Software UpdatesWindows BitLocker bypass: what you need to do this week
A zero-day called YellowKey lets anyone with physical access to your laptop bypass Windows disk encryption. Here’s what it means and what to do now.
- Cybersecurity Microsoft 365
One stolen Microsoft 365 credential can unlock your whole business
Storm-2949 shows how attackers slip into Microsoft 365 with a single compromised account and move quietly through your cloud before anyone notices.
-
CybersecurityMacs aren’t immune to credential theft, here’s what to do
A new macOS malware spoofs Apple, Google, and Microsoft login screens to steal passwords and files. Same defences, different platform: 2FA, password.
- Compliance Cybersecurity
Breach rates stuck at 43%: what the 2025 cyber survey says for your business
Nearly half of UK businesses hit by a cyber incident last year, costs rising sharply. Here’s what the latest government survey actually means for a small.
-
Cybersecurity Microsoft 365Hidden email forwarding rules: why your Microsoft 365 audit matters
Forgotten forwarding rules can quietly leak company email for months. Attackers use the exact same trick. Here’s what to look for and how to fix it.
-
Software UpdatesWindows 11 May Update Stuck at 35%? Here’s the Fix
The May 2026 Windows security update is failing on some machines due to a hidden partition running low on space. Here’s what’s happening and what to do.
- Cybersecurity Microsoft 365
Password resets alone won’t protect your Microsoft 365 account
Attackers are using Microsoft 365’s own password reset feature to hijack accounts, even when MFA is switched on. Here’s what North Wales businesses need to.
-
CybersecurityCritical Microsoft Authenticator flaw: what to do this week
A critical vulnerability in Microsoft Authenticator lets attackers steal work account access with a single tap. Here’s what it means and what to do now.
-
Software UpdatesWindows 11’s Low Latency Profile: Why Your PCs Are About to Feel Faster
Microsoft is testing a feature that makes Windows 11 feel snappier by briefly boosting CPU speed. Here’s what it means for your office machines.
-
Microsoft 365Microsoft 365 licence audit: stop paying for accounts nobody uses
Unused Microsoft 365 licences are a slow, silent drain on your budget. Here’s how to find the ghost accounts and fix the offboarding process that created.
-
Compliance CybersecurityCheap IT Costs More When the Bill Arrives
That £35/month saving looks good on a spreadsheet. But when you unpick what’s been quietly removed from the contract, the maths rarely hold up.
-
CybersecurityWhy the UK’s Cyber Threat Is Climbing — and What It Means for Your Business
The NCSC has warned the UK faces a ‘perfect storm’ of cyber threats. For small businesses in North Wales, the rules have quietly changed. Here’s what matters.
-
AI for Business Microsoft 365Microsoft 365 Copilot updates: nine new features and what actually matters for your team
Microsoft has rolled out new Copilot features including GPT-5.5 models, refreshed Researcher and Notebooks tools, and the App Launcher. Here’s what your.
-
Microsoft 365Five Microsoft 365 licence wins worth checking this afternoon
Paying for unused Microsoft 365 seats is more common than most businesses realise. Here are five quick checks that often uncover real annual savings.
- AI for Business Cybersecurity
AI is Making Cyber Attacks Faster. Defences Are Catching Up, Slowly.
Attackers are already using AI to find weaknesses in your systems faster than most teams can respond. Here’s what the UK government is doing about it, and.
-
Hardware Software UpdatesWhy your laptop feels sluggish after Windows updates
Windows Update has been silently replacing newer graphics drivers with older ones on OEM laptops. Microsoft has a fix coming, but not until late 2026.
-
AI for BusinessAI at Work: Why More Tools Usually Means Less Done
Nearly nine in ten businesses report no measurable productivity gain from AI. Here’s what’s actually working for small businesses, and what to avoid.
-
Software UpdatesMicrosoft Edge is losing its Sidebar — what changes for your team
Microsoft is quietly removing the Edge Sidebar, the quick-access panel many users pinned apps to. Here’s what’s going and what to do if your team relied on.
-
AI for Business Microsoft 365Five practical ways to get more from Copilot in Outlook
Copilot in Outlook can take a serious chunk out of inbox and calendar time. Here’s what actually works for a busy team, and where to start.
-
CybersecurityPasskeys vs Passwords: What the NCSC’s New Advice Means for Your Business
The UK’s cyber authority now officially recommends passkeys over passwords. Here’s what that means in plain English, and where to start for your business.
- Cybersecurity Software Updates
Windows 10 BitLocker fix: why your business needs a backup plan
Microsoft patched a BitLocker recovery flaw for Windows 11 but left Windows 10 out. If disc encryption is part of your GDPR or Cyber Essentials setup, here’s.
-
Compliance CybersecurityOne password, 700 jobs: the ransomware lesson every North Wales business needs
A 158-year-old UK freight firm collapsed in 2023 because one employee account had no second-step login check. Here’s what that means for your business.
-
Cybersecurity Microsoft 365Three Active Security Threats Hitting Businesses This Week
An Exchange Server zero-day, a phishing attack that bypasses MFA, and poisoned developer tools. Here’s what each one means and what to do.
-
Cybersecurity Software UpdatesMicrosoft’s May patches fix 120 security flaws — install them soon
This month’s Windows update tackles 31 remote-code-execution bugs across Office, Windows and SharePoint. No zero-days yet, but the window won’t stay open.
-
Cybersecurity Software UpdatesBitLocker has a newly disclosed weakness, what it means for encrypted laptops
A flaw called YellowKey lets attackers bypass BitLocker encryption with a USB stick and physical access. Here’s the practical impact and what to do before.
-
Compliance CybersecurityCyber insurance claims are being quietly denied — here’s why
Over 40% of UK cyber insurance claims get rejected because the IT setup doesn’t match the policy. You could be paying for cover that won’t pay out when you.
- Software Updates
Bad Windows drivers fixed from the cloud — no waiting for a replacement PC
Microsoft can now remotely fix broken drivers before you even notice a problem. For businesses running laptop fleets, that means fewer panicked IT calls when.
-
Software UpdatesMay Patch Tuesday: Four critical bugs worth acting on this week
137 CVEs dropped in May’s Patch Tuesday, but only four need urgent attention for most businesses. Here’s what to patch, in what order, and one gotcha to.
-
AI for BusinessThe Friendlier Your AI Chatbot, the Less Accurate It Gets
AI tools tuned to sound warm and chatty can quietly become less reliable. Here’s what that means for North Wales businesses using Copilot or ChatGPT.
-
Software UpdatesWindows K2: Microsoft Tries to Fix What Windows 11 Got Wrong
Microsoft’s K2 initiative targets the three biggest Windows 11 frustrations: sluggish performance, disruptive updates, and unwanted AI clutter. Here’s what’s.
-
AI for Business Microsoft 365Why Microsoft 365 Copilot Is Gaining Ground With Smaller Businesses
Microsoft Copilot plugs straight into Word, Outlook, and Teams — tools your staff already use. For North Wales businesses, that familiarity changes the maths.
-
Microsoft 365 ProductivityThat Copilot button blocking your screen? Here’s how to turn it off
Microsoft’s Copilot icon keeps floating into your Word and Excel workspace whether you want it or not. Here’s how to get rid of it in a few clicks.
-
Microsoft 365SharePoint sharing links can now expire automatically
Microsoft is adding automatic expiry to SharePoint and OneDrive sharing links. If your business handles sensitive data, this is worth configuring properly.
- Microsoft 365
OneDrive File Recovery Is Changing in May — What Your Team Needs to Know
From May 2026, deleted OneDrive files won’t appear in your Windows Recycle Bin. Recovery still works, but the process changes. Here’s what to expect.
-
CybersecurityWhen one cloud platform goes down, everyone feels it
Nearly 9,000 institutions hit by a Canvas breach shows why depending on a single cloud platform is a real risk for any North Wales business. Here’s the.
-
Compliance CybersecurityFive Cyber Security Wins Any North Wales SMB Can Action This Week
New government data shows 43% of UK businesses were hit by a cyber attack last year. The good news: most gaps are fixable this week, for free.
-
AI for Business ComplianceThree Rules for AI at Work That Actually Matter
Three-quarters of UK businesses using AI tools have no rules governing how staff use them. Here’s what to put in place, and why it matters under UK GDPR.
-
Microsoft 365Locked out of Microsoft 365? Here’s how to get back in
If you’re the only admin on your Microsoft 365 account and MFA locks you out, recovery is painful but possible. Here’s exactly what to do.
- Cybersecurity
Three Active Threats North Wales SMBs Should Know About Right Now
A Russian-backed DNS hijack, an urgent mobile device flaw, and phishing using legitimate IT tools. Three things worth checking this week.
- Cybersecurity
Palo Alto Firewall Exploit Active Now: What Your Business Needs to Know
A critical flaw in Palo Alto firewalls is being actively exploited. If you don’t know whether your setup is affected, that’s the first thing to find out.
-
Compliance CybersecurityYour IT Provider’s Mobile Tools Could Have a Security Gap Right Now
Two serious security flaws hit mobile device management and Microsoft cloud services this week. Here’s what to ask your IT provider today.
- Microsoft 365
Outlook’s Copilot now sorts your inbox and calendar for you
Microsoft is rolling out Copilot features in Outlook that quietly triage your email and enforce your calendar rules. Here’s what it means in practice.
- Cybersecurity
Why Phishing Training Alone Won’t Protect Your Team Any More
Your staff know what phishing looks like and they’re still clicking anyway. AI has changed what these emails look like, but the real problem is how people.
-
Cybersecurity Microsoft 365Is Defender for Office 365 Enough on Its Own? Real-World Numbers Say Maybe Not
A six-month audit across 100+ users found Defender missed nearly 45% of malicious emails. Here’s what that means for your North Wales business inbox.
- Cybersecurity
When Windows Defender flags the wrong file: what to do
A false-positive incident hit Windows Defender users hard. Here’s what happened, why it matters to your business, and how to stay ahead of it next time.
- Cybersecurity
VoidStealer Malware: Why Saved Browser Passwords Are a Risk
A new malware called VoidStealer steals Chrome and Edge passwords using a trick most antivirus tools miss. Here’s what it means for your business.
- Cybersecurity
Phishing Is Getting Harder to Spot. Here’s What’s Changed.
Microsoft caught 8.3 billion phishing emails in Q1 2026. The tactics have shifted, and the old advice about dodgy grammar no longer cuts it. Here’s what your.
-
Cybersecurity Software UpdatesMicrosoft Defender’s false alarm: what it means for your business
A faulty Defender update wrongly flagged legitimate security certificates as malware. No actual infection — but the knock-on chaos was very real for.
-
AI for Business Software UpdatesChrome’s Hidden AI Download: What SMBs Need to Know
Google Chrome has quietly installed a 4 GB AI model on millions of devices. Here’s what it means for your business and how to take back control.
-
Cybersecurity Software UpdatesIncomplete Windows Patch Leaves Login Credentials Exposed
A February Windows patch turned out to be only half a fix. Now the gap it left is being actively exploited to steal logins, with no clicking required from.
-
CybersecuritySharePoint Spoofing Flaw: Why On-Premises Businesses Need This Patch Now
A SharePoint vulnerability is actively being exploited to trick users and steal data. If you’re running it on-premises, this patch cannot wait.
-
Software UpdatesWindows April Update KB5083769: When Patches Break Things
Microsoft’s April Patch Tuesday update is causing Outlook freezes, backup failures, and broken network browsing on some Windows 11 machines. Here’s what to.
-
Cybersecurity Microsoft 365Why external emails look like they’re from your own staff
Emails appearing to come from trusted colleagues but arriving from outside your business is more common than you’d think. Here’s what’s usually behind it.
-
Microsoft 365April’s Teams Updates: What Your Business Needs to Know
Microsoft Teams picked up some genuinely useful upgrades in April — plus there’s a browser deadline on 15 May that’s worth flagging to your team now.
-
Co-Op and M&S – What we know so far
🕵️ A coordinated spring cyber‑attack In April 2025, Marks & Spencer (M&S) fell victim on Easter weekend to a ransomware breach. Attackers used social.
-
New Website, New Domain
Dragon Digital are pleased to showcase our brand new website, and a transition away from the teamdragon.co.uk domain to the dragondigitalgroup.co.uk domain.
Ready to make IT one less thing to worry about?
Book a free, no-obligation consultation. We'll talk through how your IT works today and where we can help, in plain English, with no pressure.