MSP hacks? Managed Service Providers (MSPs) are a major target for cyber attacks, and research shows that MSP attacks have increased significantly in recent months. According to security provider Check Point Software, attack frequency rose by 67% between 2020 and 2021.
Many small to medium sized enterprises depend on MSPs for cost-effective IT infrastructure management. Nearly 66% of businesses use an MSP for at least one function. Although enterprises trust MSPs to protect their data, many MSPs are uniquely vulnerable to threats.
In the past, the US Secret Service acknowledged that MSPs breaches were designed to orchestrate ransomware attacks, point-of-sale intrusions and business email compromise scams. MSP hacks are often used as launchpads from which to infiltrate the networks of MSP customers.
Best practices: Security for MSPs
- Develop well-defined service level agreements
- Ensure that tools are patched regularly and that patching is up-to-date
- Enforce zero-trust least privileged access principles
- Instate well-defined security controls that meet regulatory compliance requirements
- Conduct annual data audits
- Review compliance standards for local and national entities on a regular basis
- Proactively initiate cyber security training programs for employees
Best practices: Security for MSP customers
- Audit your service level agreements
- Audit remote administration tools deployed in your environment
- Make sure that two-factor authentication is enabled wherever possible
- Limit administrative access using zero-trust principles
- Leverage a secure network and system infrastructure that complies with industry, local and national security requirements
- Deploy cyber security training programs tailored for employees
For any organization, preventing a cyber pandemic is crucial. Here are a handful of additional pointers that can help:
- Prevent intrusions. One of the most daunting challenges facing security practitioners consists of Gen V attacks, which are large-scale, multi-vector attacks designed to harm multiple elements of an organization’s infrastructure; from endpoints to virtual machines.
- Provide comprehensive security. Organizations should opt for a single, unified security architecture in order to effectively protect all attack surfaces and vectors.
- Security hygiene. Patching is extraordinarily important and so too is patching in a timely manner. Patches can protect organizations from vulnerabilities that hackers are actively exploiting.
- Employee awareness. Ensure that all employees are aware of the types of cyber security threats that their department may encounter and that they have insight into the latest types of phishing threats hitting the organization.
- Segmenting networks. This represents a key pillar of a resilient security practice. Segmented networks can help ensure that, should hackers inadvertently gain access into systems, they cannot reach every corner of the kingdom, so to speak.
- Advanced threat technologies. Although there isn’t a silver bullet to protect organizations from all attacks at all times, there are “many great technologies and ideas available,” says a Check Point Software spokesperson. These include machine learning, sandboxing, anomaly detection and content disarmament. “Each of these technologies can be highly effective in specific scenarios, covering specific file types or attack vectors.”
MSPs are uniquely vulnerable to cyber attacks, and may become more so in 2022. Nonetheless, regardless of your industry or affiliation, all organizations should take proactive measures to stop threats.
For more information about MSP hacks, visit MSSP Alert. Lastly, if you’d like more information about cyber security and cyber security best practices for the year ahead, please join us at the premiere cyber security event of the year – CPX 360 2022. Register here.