It has been a heavy security week, and it is closing out with a record Patch Tuesday, an escalated warning on SharePoint, and a ransomware attack that shut down a household name’s production line. There is also a big AI model launch expected today. Here are the five stories that matter most if you are running a small or midsize business, or leading its IT.
Rewst bets its platform’s future on AI agents and MCP, not more workflow templates. Rewst rebuilt its automation platform this month around an AI Agent tool that turns a plain-language description of a process into a working automation, plus a Model Context Protocol server that lets outside AI agents discover and run Rewst automations directly. The company frames the rebuild around a real skills gap: an estimated 80,000 MSPs worldwide and only about 1,000 people with the skills to build this kind of automation for them. The new version is in broader partner testing now, with general availability expected later this year. If your IT is outsourced, this is a good window into where the automation is headed on your provider’s end: more of your day-to-day support handled by AI agents they build and review, not just a technician clicking through a checklist. It is worth asking your provider directly how they validate what those agents do before it touches your environment. Read more at ChannelE2E
Microsoft’s biggest Patch Tuesday of the year lands the same week CISA escalates its SharePoint warning. Microsoft’s July Patch Tuesday fixed 570 flaws, including three actively exploited zero-days, the largest single release of 2026. Days later, CISA updated its ongoing SharePoint Server alert to add a fourth actively exploited vulnerability to its Known Exploited Vulnerabilities catalog, on top of the roughly 10,000 exposed on-premises SharePoint servers it flagged last week, with more than 800 still unpatched against two of the flaws. If your team or your outsourced IT provider has not confirmed this month’s patches are applied, especially on anything internet-facing like SharePoint, that is a five-minute question worth asking today rather than assuming it already happened. Read more at CISA
Accenture confirms a breach that may expose thousands of downstream client environments. Accenture acknowledged a security incident after a threat actor claimed to have stolen 35GB of data, including source code, RSA and SSH keys, and Azure access tokens and storage keys. Researchers say the stolen material documents client environments in detail, and Accenture has not published a customer notification list. If your business has ever had its Microsoft 365, Salesforce, Workday, or SAP environment touched by Accenture or one of its subcontractors, this is worth a same-week credential rotation and vendor-access review on your end, rather than waiting on a notification letter that may take months to arrive. Read more at Cybersecurity Dive
A ransomware attack just shut down fairlife’s US production, and Coca-Cola felt it directly. Coca-Cola confirmed that its dairy subsidiary fairlife discovered unauthorized third-party access to its systems this week, prompting the company to suspend fairlife production across the United States while it investigates. It is a useful gut check for your own operation: if a ransomware attack forced a full production or operations shutdown tomorrow, do you actually know how long your backup and incident response plan would take to get you running again, or is that plan more aspirational than tested? Read more at Engadget
Google is expected to launch Gemini 3.5 Pro today, reportedly built from scratch with a 2 million token context window. Reports point to a July 17 launch for Gemini 3.5 Pro, which Google is said to have rebuilt on an entirely new pretraining run rather than iterating on the prior model. It is expected to ship a 2 million token context window, double the largest current frontier models, with an extended reasoning “Deep Think” mode reportedly reserved for Google’s $250 a month Ultra subscribers. Official pricing has not been confirmed. A bigger context window is a real capability, not just a spec sheet number, since it means feeding a model an entire contract set, a year of support tickets, or your whole knowledge base in one pass. Worth watching once real pricing lands to see what becomes practical to run in-house versus buy as a service. Read more at Memeburn
Sponsored by Lucky 13 Solutions
Business in Motion. Tech in Sync. Lucky 13 Solutions is a managed services provider helping small and midsize businesses keep their IT reliable, secure, and well-supported, without needing a full in-house team. Learn more at l13s.com.
Get the Business IT News Roundup in your inbox: