https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Tech Services Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity, Equity & Inclusion
  • MSP 501
    • Back
    • MSP 501 Information Center
    • 2021 MSP 501 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2022 Editorial Calendar
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • DE&I 101
    • Top Gun 51
    • Channel Partners 101 (CP 101)
  • Events
    • Back
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Tech Services Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity, Equity & Inclusion
  • MSP 501
    • Back
    • MSP 501 Information Center
    • 2021 MSP 501 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2022 Editorial Calendar
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • DE&I 101
    • Top Gun 51
    • Channel Partners 101 (CP 101)
  • Events
    • Back
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

Security


Shutterstock

Cloaked hacker

Security Alert: MSPs Facing Higher Risk of Cyberattacks

  • Written by Edward Gately
  • May 12, 2022
MSPs need to understand the outsized level of cybersecurity risk.

MSPs are once again under increasing risk of cyberattacks and this heightened risk shouldn’t end anytime soon. That’s according to a new multinational security alert.

The cybersecurity authorities of the United States, United Kingdom, Canada and New Zealand issued the security alert. The US. authorities include the FBI, National Security Agency (NSA), and Cybersecurity and Infrastructure Security Agency (CISA).

Whether the customer’s network environment is on premises or externally hosted, threat actors can use a vulnerable MSP as an initial access vector to multiple victim networks, with globally cascading effects. The authorities expect malicious cyber actors, including state-sponsored advanced persistent threat (APT) groups, to step up their targeting of MSPs in their efforts to exploit provider-customer network trust relationships.

Destructive Follow-On Activity

Threat actors successfully compromising an MSP could enable follow-on activity, such as ransomware and cyber espionage, against the MSP as well as across the MSP’s customer base, according to the security alert.

“MSPs provide services that usually require both trusted network connectivity, and privileged access to and from customer systems,” the authorities said. “Many organizations, ranging from large critical infrastructure organizations to SMBs, use MSPs to manage information communications technology (ICT) systems, store data, or support sensitive processes. Many organizations make use of MSPs to scale and support network environments and processes without expanding their internal staff or having to develop the capabilities internally.”

The security alert recommends MSPs prevent initial compromise by improving security of vulnerable devices, protecting internet-facing users, defending against brute force and password spraying, and defending against phishing.

It also recommends enabling/improving monitoring and logging practices, enforcing multifactor authentication (MFA), managing internal architecture risks and segregating internal networks, and more.

The authorities have previously issued general guidance for MSPs and their customers. A shared commitment to security will reduce risk for both MSPs and their customers, as well as the global ICT community.

‘Serious, Serious’ Issue

Roger Grimes is KnowBe4‘s data-driven defense evangelist. He said this is a “serious, serious issue” and has been going on for nearly a decade now.

KnowBe4's Roger Grimes

KnowBe4’s Roger Grimes

“MSPs need to become as strongly secured as the top security at trusted government top-secret sites,” he said. “Every device must be locked down with strict application controls, phishing-resistant MFA, great security awareness training for employees, and the strongest security they themselves can implement. Most people would be surprised, but most MSPs aren’t configured in the strongest security configuration possible. That’s because for a long time it wasn’t needed. But now as they are increasingly under direct attack by nation-states and ransomware gangs, they have to treat themselves like top-secret government agencies with no quarter for half-measures.”

Chris Clements is vice president of solutions architecture at Cerberus Sentinel, an MSSP.

Cerberus Sentinel's Chris Clements“MSPs often necessarily have complete control over their customer’s environments in order to do their job,” he said. “Unfortunately, many do not have robust internal security programs themselves and can be soft targets for cybercriminals who in turn can leverage the MSP’s elevated access to compromise dozens or hundreds of downstream organizations. This makes MSP’s compelling targets for cybercriminals. After all, why work to compromise dozens of organizations one at a time when you can instead focus efforts on a single MSP that can give the same results in a single attack?”

Immediate Action Needed

MSPs need to understand the outsized level of cybersecurity risk and take immediate action to ensure they have addressed today’s most popular attack vectors, Clements said.

“To keep themselves and their customers safe in the long run, however, they must adopt a culture of security that ingrains awareness, controls and monitoring into every business operation,” he said. “Cybercriminals are continuously adapting their techniques to bypass controls and evade detection. Defending against these evolving threats takes a holistic organization-wide approach.”

At the same time, MSPs’ customers need to ask hard questions about their security posture as well as their provider’s own internal cybersecurity maturity level, Clements said.

Want to contact the author directly about this story? Have ideas for a follow-up article? Email Edward Gately or connect with him on LinkedIn.
Tags: MSPs Best Practices Mobility & Wireless Security Technologies

Most Recent


  • Barracuda Discover22 EMEA
    Barracuda Sees Huge Shift to Managed Services Among Partners
    Nine out of 10 Barracuda partners now identify as MSPs as CEO Hatem Naguib details “going heavy” into managed services.
  • Grabber machine
    Converge Technology Solutions Snaps Up PC Specialists
    This is the California-based company’s 31st acquisition.
  • Ingram Micro Cloud Summit: From the Expo Floor
    "By gaining access to an ecosystem of partners, we’ll put distribution at the center of our channel strategy,” summit participants said.
  • Old job new job
    Exclusive: Zoom Channel Leader Laura Padilla Takes New Role with Airtable
    Airtable's valuation reached $11 billion in December.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Cash
    Pathlock Gains $200 Million in Funding, Merges with Appsian, Security Weaver
  • Cybersecurity digital lock
    Telarus Cybersecurity Assessment Software Latest in TSB Tools Arms Race
  • Managed Security Services
    Palo Alto Networks, Deloitte Offering Managed Security Services
  • North America
    Kaspersky Channel Vet Joins Cyware to Lead its North America Channel

Upcoming Events

View all

Channel Partners Europe

June 14, 2022 - June 15, 2022

MSP Summit

September 13, 2022 - September 16, 2022

Galleries

View all

Ingram Micro Cloud Summit: From the Expo Floor

May 20, 2022

What Does TSB Consolidation Mean for Vendors? Channel Reacts to PlanetOne-Avant Deal

May 19, 2022

The Gately Report: BlackBerry Ups Investment, Support of MSSP Partners

May 19, 2022

Industry Perspectives

View all

How SD-WAN Helps Secure the Expanding Network Perimeter

May 19, 2022

A Sneak Peek at the 2022 BrightCloud Threat Report

May 17, 2022

Build Customers for Life with CX and Lifecycle Selling

May 16, 2022

Webinars

View all

Simplifying SaaS Security for MSPs

April 27, 2022

How to Supercharge The Network to Support Your IT Superhero Moves

May 3, 2022

The 2022 MSP Challenge: Scale Service Delivery Despite the Talent Gap

April 21, 2022

White Papers

View all

The New Bottom Line: How MSPs Can Meet the Healthcare Crisis While Evolving Their Businesses

April 19, 2022

How to build a Security Operations Center (on a budget)

April 4, 2022

The AT&T Cybersecurity Incident Response Toolkit

April 4, 2022

Channel Futures TV

View all

AT&T, Microsoft, Cisco, ThreatLocker on Unlocking Partner Potential

Agents Share ‘Secrets,’ Industry Opportunity

May 11, 2022

Vonage Addresses Potential Partner Opportunity via Acquisition by Ericsson

May 5, 2022

Lumen Technologies ‘Built for Growth and Scale’

May 4, 2022

Twitter

ChannelFutures

We are proud to recognize @UNESCO's World Day for Cultural Diversity for Dialogue and Development, a day to celebra… twitter.com/i/web/status/1…

May 21, 2022
ChannelFutures

.@barracuda seeing huge shift to managed services among partners at #discover22 dlvr.it/SQmR1y https://t.co/driODezzpS

May 20, 2022
ChannelFutures

.@ConvergeTSC has just announced the acquisition of PC Specialists (@TIGConnect). dlvr.it/SQmMqK https://t.co/suLrTFx1W1

May 20, 2022
ChannelFutures

Photos from Expo @IngramMicroInc Cloud Summit for @pluralsight, @Vonage, @CloudCt4, @watchguard, @TenableSecurity,… twitter.com/i/web/status/1…

May 20, 2022
ChannelFutures

.@Zoom channel leader @LauraPadillaSF has taken a new role with @airtable. dlvr.it/SQm6pd https://t.co/R71QtFlwwy

May 20, 2022
ChannelFutures

Was Cisco right to blame "external factors" for its latest numbers? @zkerravala, @AnuragTechaisle, @OmdiaHQ and… twitter.com/i/web/status/1…

May 20, 2022
ChannelFutures

The deal between @Avant_CCC and @PlanetOneComm comes at a critical juncture in the channel, as vendors envision dea… twitter.com/i/web/status/1…

May 19, 2022
ChannelFutures

.@QNAP_nas warns of #ransomware attack on storage devices. dlvr.it/SQhjs3 https://t.co/2FL32Zh5Be

May 19, 2022

MSSP Insider

Business advice for MSSPs and news from the broader security channel.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X