Appalachia Technologies Blog

What cyber threats should IT leaders prioritize in 2026?

If you're responsible for your organization's security posture, you've likely noticed the threat landscape doesn't just evolve - it accelerates. What kept you safe in 2024 is already outdated, and the tactics that worked in 2025 are becoming less effective by the day.

As we look toward 2026, the convergence of several factors - mature AI capabilities, increasingly sophisticated threat actors, and the permanent shift to hybrid work environments - is creating a perfect storm of cybersecurity challenges. For IT leaders and decision-makers, the question isn't whether your organization will face these threats, but when.

As an Appalachia Technologies employee for more than half the company's existence, Mike Williams has been influential in establishing the blueprint for company culture.  Now, as the President of Appalachia, Mike is reflecting back on how our culture is a differentiator and how we got here.

Reflecting on 20 Years of Innovation and Growth

At 20 years young, there’s so much good that could be written. With hindsight being 20/20,  I want to take you back 10 years ago to which, in my opinion, was “the Appalachia transformation.” This was when we challenged ourselves to dream about creating a culture within Appalachia that we all wished we had found previously in our careers...but didn’t. I say “dream” because we had a rather lofty vision of what we wanted “us” to look and feel like. We knew it wouldn’t be easy, and we also knew it would never be finished.

In today’s fast-paced and digitally driven world, the demands placed on the IT infrastructure of businesses like yours are ever-increasing. To meet these challenges head-on, embracing outsourced IT services and entrusting your technological needs to an expert third-party provider is the best option. By partnering with these specialists, you can tap into a wealth of knowledge, experience and cutting-edge technologies that might otherwise be challenging to obtain in-house.

In today’s digital age, ransomware attacks are becoming increasingly frequent, sophisticated and costly. With cybercriminals constantly evolving their tactics and targeting businesses of all sizes, organizations like yours must proactively safeguard your data and systems. Unfortunately, many companies fall prey to common ransomware myths, which can leave them vulnerable to attacks and unprepared to respond effectively in the event of an incident.

Ransomware is a type of malicious software that encrypts files on a device or network, making them unusable until the victim pays the attacker a ransom. What started as a simple virus spread through floppy discs in the late 1980s has now evolved into a billion-dollar cybercrime industry.

This month’s release of the much-anticipated CMMC 2.0 left many of us in the world of cybersecurity shaking our heads.  We have been working diligently with the defense industrial base for several years now, even before the CMMC was created, to stop the bleeding of our defense secrets to our adversaries.  As a veteran and a Patriot, I, along with many other Americans, take this very serious problem personally. 

I started writing SSP’s (System Security Plans) well before the original Executive Order mandated deadline of December 31st 2017 and have since written at least 50 SSP’s for defense contractors of every imaginable type and size.  There wasn’t a lot of guidance on how to do this at that time, other than to have a very thorough and complete understanding of the nearly 500-page NIST 800-53 framework. 

P R E S S    R E L E A S E

Mechanicsburg, PA, September 16, 2021: Today, Appalachia Technologies, a Managed IT and Cybersecurity Provider, was named a Top 250 MSSP for 2021 by MSSP Alert – a news & research resource for Managed Security Services Providers (MSSPs). The list tracks the world’s top managed security services providers.

P R E S S    R E L E A S E

Mechanicsburg, PA, July 7, 2021: Appalachia Technologies, a Managed IT and Cybersecurity Provider, is pleased to announce that the Company now has three (3) approved Registered Practitioners (RPs) on staff: Jason McNew, Senior Engineer, Cybersecurity Risk & Compliance, Andy Warren, Senior Security Engineer, and Mike Romano, Principal Partner.  Warren has background in the private sector while McNew and Romano both have extensive prior experience with the Department of Defense, including military service in the United States Air Force and Navy, respectively. .

Over the weekend, the Colonial Pipeline, one of the largest US pipelines and a major supplier for the East Coast, was hit by a cyber attack. A ransomware attack caused the company to shutdown operations as they work through the necessary steps to respond and recover, however the impact is expected to be significant if fuel terminals experience outages as a result in disruption to their supply.  The Colonial Pipeline supplies diesel, gasoline, and jet fuel.  The US government has issued an emergency waiver to allow an exemption for drivers related to hours of service, as well as exemptions related to fuel transportation via tanker ships.  To compound the supply issues further, the US is experiencing a shortage of fuel truck drivers, areas of the US are opening up further from COVID restrictions which is expected to increase travel, and we are approaching the summer travel season which notoriously increases fuel demands.

P R E S S    R E L E A S E

Mechanicsburg, PA, April 27, 2021: Today, Appalachia Technologies, a Managed IT and Cybersecurity Provider, announced their approval as a Registered Provider Organization (RPO) by the Cybersecurity Maturity Model Certification Accreditation Body (CMMC-AB).  CMMC is a unifying standard for the implementation of cybersecurity across the Defense Industrial Base (DIB).

P R E S S    R E L E A S E

Mechanicsburg, PA, March 25, 2021:Today, Appalachia Technologies, a Managed IT and Cybersecurity Provider, announced their acquisition of PremierComm's Unified Communications and Collaboration division; further adding service capabilities, clients and team members to their Managed IT and Professional Services organization.

P  R  E  S  S     R  E  L  E  A  S  E

Mechanicsburg, PA, September 29, 2020:  Today, Appalachia Technologies, a Managed IT and Cybersecurity Provider, announced their acquisition of Stronghold Cyber Security (SCS), a company specializing in NIST, CMMC, and DFARS compliance consulting services to defense contractors.

The Technology Behind Cryptocurrency Will Do Much More In Time.

There are enough new technologies today that it can be hard to keep up with all of them. One technology that is leaving a lasting mark is blockchain. The technology behind the ever-popular cryptocurrency Bitcoin (and every other cryptocurrency), is quickly becoming a household name. Here is a brief look into blockchain technology, how it works, and what kind of innovations businesses can use to make it work for them

The late American author Kurt Vonnegut once wrote, “New knowledge is the most valuable commodity on earth. The more truth we have to work with, the richer we become.” Written in the 20th century, it has been put in practice by 21st century businesses. As the Internet has grown, the amount of companies expanded, and the amount of data that those companies collect has grown exponentially, especially now that there is a market for such data.

Profitability is less the measure of being able to turn a profit, and more the measure of how much profit you can make. For the successful small business, the integration of technology can dictate what kind of annual margins you are looking at. For the new company, however, it can be something even more critical: the difference between setting a course for success, or wallowing in failure. Today we analyze the cost difference between hosting your IT in-house, or choosing to host it in the cloud.

Despite what detractors say, regulations are in place for good reason. They typically protect individuals from organizational malfeasance. Many of these regulations are actual laws passed by a governing body and cover the entire spectrum of the issue, not just the data involved. The ones that have data protection regulations written into them mostly deal with the handling and protection of sensitive information. For organizations that work in industries covered by these regulations there are very visible costs that go into compliance. Today, we look at the costs incurred by these organizations as a result of these regulations, and how to ascertain how they affect your business.

How much does your business rely on technology to keep your organization running forward? As business technology becomes more complex, it’s becoming increasingly popular for organizations to have their own internal IT departments to manage and maintain it. Yet, small businesses don’t often have the necessary funds for such a feat. How can your company afford quality IT service? You can start by pursuing managed IT solutions from a managed service provider.

The password isn’t nearly as secure as it used to be. Hackers have begun to take advantage of extremely powerful solutions designed to brute force their way into accounts by using software to rapidly guessing thousands of passwords per second, making it extraordinarily difficult to prepare yourself for them.

What’s the best way to guarantee that passwords aren’t going to be the downfall of your company? A great start is by taking a close look at password best practices and two-factor authentication.

Data security isn’t a matter to be taken lightly, as too many businesses have found out the hard way. Unfortunately, there are far too many simple ways to correct common security issues - enough that it’s foolish not to do so. We’ll review a few ways to fix security issues, after discussing one of, if not the, most egregious security failings in modern history.