https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Master Agents
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity & Inclusion
  • MSSP Insider
  • MSP 501
    • Back
    • Apply Now
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • Videos
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
    • Channel Educational Series
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
    • Channel Convergence
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Content Resources
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • Excellence in Digital Services
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Master Agents
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity & Inclusion
  • MSSP Insider
  • MSP 501
    • Back
    • Apply Now
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • Videos
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
    • Channel Educational Series
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
    • Channel Convergence
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Content Resources
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • Excellence in Digital Services
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

Security


Federal Employee Database Breach: Weak Remote Admin Access?

  • Written by Ellen
  • June 8, 2015
Reports have suggested that under-restricted remote admin access let hackers in to 4 million federal employee records. Does this make your MSP prospects pause?

Ellen MuraskinFrom an MSP’s perspective, the most disturbing thing about the data breach story du jour – the one in which 4 million records of current and former federal employees were compromised – is the paragraph on page A18 of the New York Times. That’s the one that goes, “The intrusion came before personnel office fully put into place a series of new security procedures that restricted remote access for administrators of the network and reviewed all connections to the outside world through the Internet.”

Could such a fact have a chilling effect on your remote-management proposals? If the federal Office of Personnel Management can’t properly gate remote network admins, your customers and prospects might think, what chance do they have with you? I asked Chester Wisniewski, senior advisor at security vendor Sophos, if there are any lessons here for MSPs who remote into their clients’ networks. 

“Absolutely. We’ve seen mistakes made in the past by MSPs that are similar to this that have led to breaches,” says Wisniewski. “For example, with payment processing, where they would have a shared password across a hundred different chain restaurants that they manage, because it was inconvenient to have some sort of database to look up how to access all these different clients. Also, when you’re an MSP, you don’t know where your staff is going to need to manage things from. There’s often no kind of restriction in place that says, ‘Perhaps a log-in from China into this system is inappropriate, whereas a log-in from Dubuque is.'”

Adallom, a “cloud access security broker,” discusses the risks of admin account proliferation in its Cloud Risk Report of Nov. 14. While “zombie” user accounts — those of employees long gone, or simply unused — pose a hijack threat, zombie admin accounts, with their broader access privileges, are clearly much deadlier. That’s why they “are the preferred and most targeted attack vector for threat actors.” Within its customer community, Adallom finds that SaaS giant Salesforce averages seven admin accounts per 100 users. 

Wisniewski says that administrators logging into government databases probably should be logging in from a government-owned network, or at least geographically within the United States, because those are simple restrictions you can put in place. He adds that for remote administrators, two-factor authentication should be a requirement. (Although Adallom’s report points out that the right malware can overcome this.) 

“You may not want to implement something that complicated for everyday users to get their email or the services you’re providing as an MSP,” he says. “But certainly the ones that control the mother ship, the administrative users, need to have much tighter controls. That’s how you end up losing not just one person’s information, but conceptually, your whole client base. That’s a business-ending event.” 

And although he doesn’t know the details of this breach – “if I did I couldn’t talk to you” – Wisniewski strongly suspects that …

… the federal government’s slow reaction time played a part in this breach.

“From my experience, the wheels of bureaucracy move very slowly in the federal government. It takes a lot longer to take action on these things,” he said. “Not to mention you’ve got to convince Congress to give you budget.”

He points out, as the Times story does, that the NSA is still struggling with data security, years after the Edward Snowden debacle. 

Wisniewski adds that private-sector organizations have a “much easier time” reacting to the fast pace of change in IT security.

“We’re seeing the private sector just getting to a point now when they’re starting to get a good enough grasp of cyber security so that we’ll hopefully stop hearing these doomsday stories about credit card and health records. You know it’ll take a lot longer, unfortunately, for all the federal agents to bring their standards up to an equivalent.”

How can MSPs reassure their clients in the face of these stories?

“That’s a tough issue, because the clients hire you precisely because they’re not experts. You can’t just publish a bunch of technojargon about two-factor authentication, because they want to offload the responsibility for worrying about this onto you.”

At the same time, Adallom notes that  IT professionals and MSPs in particular have to educate their clients to accept some responsibility; lack of discipline will foil the toughest security measures.

A good way to build confidence, says Wisniewski – “depending on how much money you have” – is to go through an independent, third-part security audit once or twice a year. At the top of the scale, these are performed by the Ernst & Youngs and Accentures. At a more common level, for say, a payment processing service provider, there are companies like Trustwave. While Wisniewski admits that MSPs rarely take such a step, he suggests that successful passage of such audits would make a very effective differentiator.

Tags: Agents Cloud Security

Related


  • Business handshake
    Ujet, Peerless Network Enter Master Agent Agreements with PlanetOne, Intelisys
    Ujet’s channel partner program supports strategic business partnerships, master agents and integrators.
  • Channel Chief Nameplate
    AT&T, Telarus, MicroCorp Vet to Lead RSI's Channel
    The MSSP entered the channel in early 2019.
  • Advantage
    TBI Adds Rival Intelisys Alum, Tech Data, 8x8 Vets
    The new leadership members are already making improvements at TBI.
  • Convergence
    Convergence in the Channel: Is It Happening, and What Does This Mean for MSPs?
    Is IT-telecom channel convergence already happening? Do the two speak the same language? We explore the different sides.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • SMBs Weigh 5G Impact as Verizon, AWS Launch New Use Cases
  • Windstream Enterprise Unveils OfficeSuite UC Contact Center Enhancements
  • Intermedia Delays Going Public, Cites 'Adverse' Market Conditions
  • Channel People on the Move: 8x8, TBI, Telarus, Microsoft, IBM, More

Galleries

View all

Biden Administration Issues Russian Sanctions in Response to SolarWinds Hack, Election Interference

April 16, 2021

Industry Perspectives

View all

SD-WAN Supports More Purposeful Shift to Cloud

April 16, 2021

How Tech Is Transforming Public Safety–and the Implications for Channel Partners

April 15, 2021

Exercising Your Organization’s Data Loss Recovery Abilities

April 13, 2021

Webinars

View all

What to Look For: 2021 Threat Report

April 22, 2021

Health Care and SD-WAN: A Seller’s Guide

April 27, 2021

How MSPs Can Leverage SOCaaS to Improve Security & Grow Revenue

May 4, 2021

White Papers

View all

Carbonite Data Protection and Cyber Resilience

April 15, 2021

Top Tips: How Resellers Can Leverage Rackspace to Enhance Customer’s Cyber Security Protection with Microsoft 365 Security

March 30, 2021

Top Tips: Optimize Your Microsoft 365 Investment with Rackspace Technology

March 30, 2021

Upcoming Events

View all

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

MSP Summit

November 1, 2021 - November 2, 2021

Channel Evolution Europe

November 30, 2021 - December 1, 2021

Videos and Fastchats

View all

5 Reasons Diversity, Equity and Inclusion Is Important

Five9 Shares Insights on Implementing a DE&I Strategy

April 13, 2021

FASTCHAT: How Fortinet Reduces Complexity Through Networking, Security

March 31, 2021

Strong Customer Experience Needs Strong Partner Experience

December 22, 2020

Twitter

ChannelFutures

If you needed any more reason to submit your @MSP_501 application, this promotional video will get you fired up!… twitter.com/i/web/status/1…

April 16, 2021
ChannelFutures

.@FrontierCorp just weeks away from exiting #Chapter11bankruptcy. dlvr.it/RxqkK1 https://t.co/yxyChKL9Um

April 16, 2021
ChannelFutures

#SDWAN supports a more purposeful shift to the #cloud @ComcastBusiness #networksecurity #hybridwork #security #SaaS… twitter.com/i/web/status/1…

April 16, 2021
ChannelFutures

RT @alysfitz: 67% of respondents reported burning out since the COVID-19 pandemic hit. We need to do better to support #WomenInTech, especi…

April 16, 2021
ChannelFutures

RT @AllianceofCW: #ACW members Mayka Rosales-Peterson and Raquel Wiley were elected to @ChannelFutures' #Diversity, #Equity, & #Inclusion B…

April 16, 2021
ChannelFutures

.@ZiplyFiber rolls out agent #partnerprogram. #networking dlvr.it/RxmM4K

April 16, 2021
ChannelFutures

New #Microsoft #SurfaceLaptop4 is an incremental update with an improved CPUs webcam, speakers and dual mics.… twitter.com/i/web/status/1…

April 16, 2021
ChannelFutures

.@okta hires @InsightEnt vet as global channel chief. #cybersecurity dlvr.it/RxmM20 https://t.co/ImWRZp2qHt

April 16, 2021

MSSP Insider

Business advice for MSSPs and news from the broader security channel.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X