Amicus IT, LLC

Amicus IT, LLC Amicus IT specializes in managed IT services and cybersecurity for small and Medium Businesses.

When your firm invests in new laptops or updates its systems, the conversation usually starts in a sensible place: Will ...
06/07/2026

When your firm invests in new laptops or updates its systems, the conversation usually starts in a sensible place: Will it run faster? Will our software still work the way we need it to?

Those are the right questions. But there is a layer of value in newer hardware that does not always come up in those conversations.

The security protections built into current Windows Pro devices are designed around the kinds of situations that actually happen in professional services firms. A laptop left in a taxi after a client meeting. A password reused across personal and work accounts. A file opened quickly during a busy afternoon without a second thought.

None of these moments feel like a security event in the moment. They are just ordinary days. But they can become something bigger if the right protections are not in place.

What well-configured devices do is quietly handle the risk in the background. Data can be encrypted so that a lost or stolen laptop does not automatically mean exposed client files. Sign-in can rely less on passwords. Files that look unfamiliar can be assessed before they run.

None of this changes how your team works. That is precisely the point.

The best IT infrastructure does not draw attention to itself. It just means the ordinary moments stay ordinary.

The threats coming into your firm's inbox are not more sophisticated than they were a few years ago. They are faster.Tha...
06/06/2026

The threats coming into your firm's inbox are not more sophisticated than they were a few years ago. They are faster.

That is an important distinction. Attackers are not necessarily smarter. They have tools that help them move more quickly, test more variations, and produce messages that read like normal professional correspondence. A phishing email no longer has to be perfect. It just has to be believable enough to land at the wrong moment in someone's busy day.

For a law firm or accounting practice, that day is pretty much every day.

The pressure point is speed. Once someone gains access to a system, the window to detect it and respond has narrowed significantly. What might once have taken hours can now unfold much faster. That puts real weight on having detection in place, not just prevention.

The underlying reality has not changed much. Most incidents still start the same way: a password is stolen, guessed, or handed over. What has changed is how quickly things can escalate from that first step.

Two things still carry more weight than almost anything else. First, multi-factor authentication, because a stolen password on its own becomes far less useful. Second, visibility across your systems, so that unusual behavior gets flagged before it becomes a serious problem.

Awareness still matters too. Many of these situations begin with one small decision made during a busy afternoon.

06/05/2026

Small screens, small type, and a full day of document review do not mix well.

If you find yourself leaning into your monitor to read what is on screen, there is a Windows shortcut that fixes this in about two seconds. No settings menus, no squinting. Just a faster way to see what you are working with.

The video shows you exactly how to do it.

When someone leaves your business, their access needs to leave with them.But accounts get missed more often than people ...
06/03/2026

When someone leaves your business, their access needs to leave with them.

But accounts get missed more often than people realize. An old login here, a forgotten app there, and suddenly someone who no longer works for you could still have a way into your systems.

If you are not completely certain that every account has been removed when a team member moves on, now is a good time to check.

It is one of those things that feels low priority until it becomes a real problem. The team at Amicus IT can help you put the right process in place so nothing slips through the cracks.

If your phone is used for client communication, billing approvals, or accessing firm systems, this is relevant to you.Re...
06/02/2026

If your phone is used for client communication, billing approvals, or accessing firm systems, this is relevant to you.

Researchers recently demonstrated a technique that can extract sensitive data from certain Android phones in under a minute. The method does not require tricking anyone into clicking a link. It works at the hardware level, specifically targeting a part of the device that handles encryption keys and PIN protection.

To use it, someone needs physical access to the phone and the right tools. That is the limiting factor, but it is not as reassuring as it sounds. Phones get left in conference rooms, ride-shares, or airport lounges more often than people expect.

Once that access is established, the storage on the phone can be unlocked from the outside. Messages, documents, photos, and other data become readable.

The practical implication for anyone running a professional services firm is straightforward. A phone sitting on a desk or in a bag is not automatically secure. Physical access to a device can be enough to cause a serious problem.

A few things reduce the risk: keeping software current, using longer and less predictable PINs, and having a plan for what happens if a phone is lost or stolen. If your firm does not currently have a mobile device policy in place, this is a good reason to start that conversation.

06/01/2026

If you manage access to sensitive client files, financial records, or case documents, password hygiene matters more than most people realize.

There is a shortcut gaining traction right now, one that sounds perfectly sensible on the surface and fits right in with how many professional services firms are adopting AI tools. But it comes with a security trade-off that is worth understanding before you decide whether it works for you.

The short version: not every efficiency improvement is as safe as it looks. Some create gaps that would not have existed with a more conventional approach.

We put together a short video explaining what this shortcut actually does, why it can quietly weaken your defenses, and what questions to ask if your firm is already using AI in any part of its workflow.

If your team handles confidential information, which of course it does, this is worth three minutes of your time.

06/01/2026

Are the passwords protecting your business really as strong as you think?

There is a growing shortcut businesses are using that looks smart on the surface but could quietly weaken your security without you realizing it.

If you are using AI tools in your business right now, this is something you genuinely need to understand.

Watch the video to find out more, and if you have any questions about your business security, the team at Amicus IT is always happy to help.

If your business website runs on WordPress, here’s a quick check for you 🔎There’s a popular plugin called Quiz and Surve...
05/31/2026

If your business website runs on WordPress, here’s a quick check for you 🔎

There’s a popular plugin called Quiz and Survey Master (QSM).

It’s used by more than 40,000 websites to create quizzes, surveys and forms without needing any coding.

Unfortunately, versions 10.3.1 and older were recently found to have a serious security flaw.

The issue is what’s known as an SQL injection vulnerability.

SQL is the language used to talk to a website’s database, the part that stores things like user accounts, submissions, and other important data.

An SQL injection flaw means someone can sneak malicious commands into that database.

In this case, any logged-in user, even someone with a basic subscriber account, could potentially inject commands into the system.

That could allow actions like:

🚫 Accessing sensitive data�
🚫 Extracting information from the database�
🚫 Manipulating content

The vulnerability is tracked as CVE-2025-67987, and it was fixed in version 10.3.2.

The latest version available is 10.3.5, which is the safest bet.

Based on WordPress.org data, just over half of websites using QSM are on version 10.3. That means a large number are likely still vulnerable.

That’s potentially tens of thousands of sites.

Right now, there’s no confirmed evidence of this flaw being actively exploited. But once a vulnerability is public, attackers often start scanning the internet looking for unpatched sites.

👉 If your site uses this plugin, the solution is straightforward: Update it immediately 👈

More broadly, this is a reminder of something I say often to business owners: WordPress itself isn’t usually the weak link. It’s the plugins.

Every plugin you install adds functionality but also adds potential risk.

If you’re not actively using a plugin or theme, it shouldn’t just be deactivated. It should be deleted from the server completely.

Websites aren’t a set and forget asset. They’re part of your digital infrastructure.

If they’re vulnerable, they can become an entry point into your wider systems. Especially if admin accounts reuse passwords across services.

❓ When was the last time someone checked which plugins your website is running and whether they’re fully up to date?

If you’ve ever tried to get an AI tool to understand a whole project instead of just one document, you’ll appreciate thi...
05/30/2026

If you’ve ever tried to get an AI tool to understand a whole project instead of just one document, you’ll appreciate this…

Microsoft has introduced something called Copilot Agents in OneDrive.

And this is where AI starts to feel a bit more useful for real-world business work 🤖

Here’s the problem it’s trying to solve.

Normally, if you ask Copilot to summarize or analyze something, you’re doing it one file at a time. One Word document. One spreadsheet. One PowerPoint.

But projects don’t live in one file.

They live across proposals, meeting notes, budgets, timelines, research documents, and email summaries.

With OneDrive Agents, you can now select up to 20 related files and bundle them together into what’s saved as a .agent file.

Instead of asking: “Summarize this file…”

You can ask: “What deadlines are coming up across this whole project?”

“Where are the risks?”�

“What did we agree in the last three meetings?”

And it has the context of all the selected files, not just one.

The agent behaves like other AI tools. It can summarize, answer questions, surface key points. But it’s operating with a broader understanding.

Even better, these agents are saved as files inside OneDrive.

That means you can share the .agent file with colleagues. They don’t need to recreate the setup themselves. You’re all working from the same AI “view” of the project.

As projects evolve, you can add or remove documents from the agent or refine the instructions it uses.

It stays aligned with the latest information instead of becoming outdated.

Right now, this feature is available to people with a Microsoft 365 Copilot license accessing OneDrive via the web.

It’s clearly still evolving. Microsoft is asking for feedback, which suggests it’s watching closely to see how businesses use it.

From a business owner’s perspective, the real value is reducing the time spent hunting across folders, trying to piece together context.

If AI can help you understand a whole project in one place instead of ten separate files, that’s meaningful productivity.

🤔 The question is, would you trust an AI agent to interpret multiple important documents at once, or would you still prefer to read everything yourself?

Address

222 South Meramec Avenue, Suite 202
St. Louis, MO
63105

Opening Hours

Monday 8am - 6pm
Tuesday 8am - 6pm
Wednesday 8am - 6pm
Thursday 8am - 6pm
Friday 8am - 6pm

Telephone

+13148848080

Website

Alerts

Be the first to know and let us send you an email when Amicus IT, LLC posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Contact The Business

Send a message to Amicus IT, LLC:

Shortcuts

Share

Category