https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2021 MSP 501 Application
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2021 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2021 MSP 501 Application
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2021 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

Security


Shutterstock

Ransomware

SMBs and Ransomware: 3 Fundamentals Every MSP Must Address

  • Written by Troy Gill
  • March 26, 2018
Attacking small companies is big business. Just because the latest headline-grabbing ransom attacks have hit big entities doesn't mean your SMB customers can get complacent

By Troy Gill, Manager of Security Research, AppRiver

In 2017 alone, more than 1.9 billion data records were lost or stolen, lining attackers’ cyber pocketbooks with billions in bitcoin payments. Ransomware purveyors are not just getting richer — they are also getting smarter and creating more professional operations that mimic legitimate technology businesses.

With headlines mainly focusing on big-company breaches, such as the City of Atlanta or Uber, it’s easy to understand why some small-to-midsize businesses let their guard down, thinking they can fly under the radar. Wrong. It’s a false sense of security, likely pushed along by the fact that SMBs often lack the tools and training needed to recognize, prevent and protect themselves from such attacks. As a trusted adviser, it’s up to you to remind them that they can pay some now, or wait and come up with the money to pay attackers — plus a good public-relations team to help mitigate reputation damage.

MSPs can help their clients stay ahead of the game with prevention and protection, but making that sale might require showing them the financial impacts of an attack. On average, a security breach will cost an SMB $117,000 per incident, says a study by Kaspersky Lab and B2B International. Financial loss is not the only concern, either. Companies also face reputation damage that can quickly outweigh the cost of an actual breach. Consumers might avoid doing business with a company that has had a publicized breached. 

Once you have their attention, help SMB clients improve security and safeguard against attacks with three simple strategies: employee education; a security software suite; and data backup and recovery solutions. Managed security services will be a $40 billion market by 2022, and MSPs are in a prime position to grab a slice of the pie. 

To Err Is Human

It all starts by protecting the front line — their staff. The weakest links at any business are its employees, so education is key. Give people the tools and information they need to make informed decisions about email and web content and how to protect data and systems. Establish email policies in a manner that reduces risk of an attack, while addressing the organization’s specific challenges and goals. MSPs can help identify potential vulnerabilities by determining a baseline of end-user security practices. A good training program includes penetration testing, following up on the results and periodic quizzes to make sure staffers are following policies. An MSP can then tailor training to address areas where improvement is needed. That is not just helping the customer; it is also making the service provider an integral, visible part of the organization’s security team. 

Still, educating employees is just the first step. SMBs must also take action to safeguard their networks against ransomware by deploying a security suite that covers risk factors from multiple types of attacks.

The majority of emails are spam or contain malware and viruses. As a result, MSPs must offer their SMB customers a strong anti-spam service that puts a filter between the internet and their mail servers. Routing email messages through filters, which employ a number of continuously updated, sophisticated detection methods, ensures your customers get only legitimate messages. A security suite can also provide web-surfing protection at the DNS level to ensure each site is safe. Since there are thousands of malicious web pages discovered daily, MSPs must offer protection from malware and objectionable web content. By testing all web addresses against a continuously updated list of malicious websites and blocking them, MSPs can offer their clients up-to-the-minute protection. When a threat to the network is identified, a notification is sent and the attack is blocked.

Finally, MSPs can help clients with a layered security approach by building out data backup and recovery plans. Ransomware can find its way to external backup solutions connected to PCs, so online backups are by far the safest form of recovery from an attack. With an online recovery solution in place, businesses are able roll back to a clean state, before the infection, enabling MSPs to help undo damage. Current solutions take snapshot-based, incremental backups, as frequently as every five minutes, to create a series of recovery points. Since data is restored to a point in time before the ransomware infection, customers can be certain everything is clean, and the malware cannot be triggered again.

MSPs can play a critical role in helping clients stay ahead of the risks and better safeguard their businesses. Through a layered approach, encompassing training, a security software portfolio and recovery solutions, MSPs can help SMBs protect their businesses from threats on multiple fronts.

As manager of security research at AppRiver, Troy Gill analyzes data regarding cyber threat tactics, methodologies or vulnerabilities that present threats to IT operations. Such real-time analysis helps Gill apply immediate improvements to cyber-analytical tools and disseminate incident reports, threat trends and situational analysis. Since joining AppRiver, Gill has been instrumental in protecting customer safety. By monitoring inbound messaging threats and identifying methods for blocking them, Gill helps to keep more than 45,000 corporate customers safe from today’s ever evolving IT threats. 

Tags: Cloud Service Providers Digital Service Providers MSPs VARs/SIs Security Strategy

Related


  • Remote Worker, Telecommuter
    Productivity During ‘Work from Wherever’: Choosing the Right Back-Office Tools for a Distributed Workforce
    In the same way cloud-based solutions exist for CRM and support, back-office functions can move to the cloud.
  • Security Operations Center SOC
    Kaseya Buying RocketCyber to Improve MSPs' Security Capabilities
    This acquisition "catapults" Kaseya even further ahead of its competition, the company's CEO said.
  • The words Helpful Tips inside a box next to a cartoon megaphone.
    From Salesperson to Trusted Adviser: 3 Tips for Mastering Consultative IT Sales
    Adapt sales techniques to thrive in today's changed landscape.
  • Network monitoring
    AppNeta Launches Global Alliances Program
    AppNeta adds performance observability to its partners' existing solutions.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • SASE: The Key to Mitigating Business Transformation Risk
  • Racially Charged Tweet Costs Alteryx CRO His Job
  • AvePoint Taps Ingram Micro, Palo Alto Networks Vet to Lead Channel
  • Microsoft Conclusion on SolarWinds Hack 'Conflicts' with Other Messages

Galleries

View all

From The Second City: How to Use Improv as a Business Tool

March 3, 2021

Industry Perspectives

View all

Multi-Cloud: Strategy or Inevitable Outcome? (or both?)

March 3, 2021

Backup Vulnerability: 4 Targets Hackers Might Utilize to Infiltrate Your Backup Solution

March 2, 2021

The “Roaring 20s” Are Coming

February 25, 2021

Webinars

View all

A Partner’s Perspective on Channel Success in 2021

March 23, 2021

XDR and Why it Matters to MSPs

March 24, 2021

Top Security Trends Impacting Technology Security Providers In 2021

March 25, 2021

White Papers

View all

Why Fortinet for my MSSP?

March 2, 2021

Small and Mid-Size Business Security: 4 Steps to Success

March 2, 2021

How SMBs Can Secure Endpoints and Remote Workers for the Long Haul

March 2, 2021

Upcoming Events

View all

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

Kelly Leonard of @SecondCity talks to us about how improv can be used as a business tool to improve the company cul… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

Another amazing day at #CPVirtual. Here's what you missed and what's on tap for Day 3. @Channel_Expo… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

Learn how @VMWare can help you build and deliver a #multicloud strategy. #hybridcloud #cloud #AWS… twitter.com/i/web/status/1…

March 3, 2021
ChannelFutures

Learn about the merging of our media websites; plus, a new #MSP Summit this fall. @Channel_Expo… twitter.com/i/web/status/1…

March 3, 2021
ChannelFutures

.@KnowBe4 acquires @MediaPROInc to beef up #cybersecurity training. dlvr.it/RtvdpB https://t.co/FzseCn4K6A

March 3, 2021
ChannelFutures

#COVID19 is ramping up #socialengineering – time for MSSPs to step in. @Electric_AI dlvr.it/RtvRQc https://t.co/ebTJNJcOxz

March 3, 2021
ChannelFutures

.@pluribusnet launches expanded, simplified partner program. #SDN dlvr.it/RtvGtQ https://t.co/bRDqYLEhXJ

March 3, 2021
ChannelFutures

#SupplyChain agility is changing global distribution patterns and #ictservices, says @NeecoICT.… twitter.com/i/web/status/1…

March 3, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X