FBI, CISA, and NSA Warns of Cyberattacks Targeting MSPs

Share on facebook
Share on twitter
Share on linkedin
Share on reddit

The latest reports observe a rise in malicious cyber activity targeting managed service providers (MSPs) and anticipate this trend to continue.

The Cybersecurity and Infrastructure Security Agency (CISA) issued a joint cybersecurity advisory along with Federal law enforcement partners and international allies that warn of an increase in malicious cyber activity targeting MSPs.

“The UK, Australian, Canadian, New Zealand, and U.S. cybersecurity authorities expect malicious cyber actors—including state-sponsored advanced persistent threat (APT) groups—to step up their targeting of MSPs in their efforts to exploit provider-customer network trust relationships,” the joint advisory reads.

Managed Service Providers

MSPs are entities that deliver, operate, or manage ICT services and functions for their customers via a contractual arrangement, such as a service level agreement.

It offers services in conjunction with other providers that include platform, software, and IT infrastructure services; business process and support functions; and cybersecurity services. MSPs manage these services and functions in their customer’s network environment, either on the customer’s premises or hosted in the MSP’s data center.

MSPs can also offer cloud services, CISA noted this joint advisory “does not address guidance on cloud service providers (CSPs).”

Actions MSPs Can Take to Strengthen their Cyber Defences Improve the security of vulnerable devices by selecting and Hardening Remote Access VPN Solutions, and Vulnerability Scanning Tools and ServicesSecuring internet-facing servicesDefend against brute force and password sprayingDefend against phishing

Detection and Network Defense Monitoring Capabilities

MSPs should log the delivery infrastructure activities used to provide services to the customerImplement complete security event

Read more

Explore the site

More from the blog

Latest News