IT Brief Asia logo
Technology news for Asia's largest enterprises
Story image

Why Managed Service Providers are the next big target

In today’s world Managed Service Providers are businesses' answer to managing their technology risk. For larger organisations, keeping an in-house digital team is not part of their strategy. For smaller companies, outsourcing is the only way to bridge an expertise gap and keep up with rapidly evolving technology.

MSPs are now such an integral part of the digital ecosystem that companies trust more of their sensitive data with them, so it makes sense that they will become serious targets for ransomware crews who see huge value and plenty of vulnerabilities.  

Multiple extortion  

The damage ransomware can cause organisations is a surprise to nobody - queue colonial pipelines and a plethora of other examples reported ad nauseum. Despite the scale of these big attacks, they pale in comparison to what ransomware crews do when they infiltrate an MSP. 

When attackers find a vulnerability in an organisation, they can compromise it and then extort that organisation, but finding a vulnerability with an MSP means potentially compromising every organisation that MSP services. Attackers can now execute double and triple extortions paralysing an array of organisations, something that previously would have only been possible by nation states.

Most worryingly, a successful attack on an MSP opens the door for quadruple extortion. In this scenario attackers don’t just go after the provider but go after customers who rely on the services of their MSP to function or protect their most sensitive data.   

Recently a nation state targeted a software vendor of remote monitoring and management (RMM) tools, Solarwinds. RMM tools allow teams to monitor and management IT systems. This attack allowed the adversary access to government agencies, cyber security software developers and other key organisations. Cybercriminals are now following suit. REvil, a cybercriminal organisation identified a vulnerability in Kaseya, another RMM tool and in July 2021, used this vulnerability to compromise multiple MSPs and their customers, holding their data to ransom. 

Customers will suffer the consequences 

An MSPs ‘raison d’etre’ is in part one of its biggest vulnerabilities. For many businesses, MSPs provide a knowledge gap and can provide expertise or services that are too expensive to manage with an in-house team. Naturally, MSPs have unfettered access to multiple systems, as is required to complete their services. The problem with this model is that organisations now have little visibility about what is happening behind the scenes leaving them in the dark when trouble ensues. 

Most people think that these problems aren’t as big an issue for organisations who still have in-house teams that can quickly manage threats and often ensure staff in their organisation are well educated. However, organisations forget that while they may not have outsourced all of their systems, they usually leverage MSPs to manage smaller pieces of infrastructure, such as the management of their databases, development of a new application or providing expertise in a CRM. A lack of visibility surrounding a critical piece of infrastructure can hinder an entire threat response and waste valuable time.   

Reducing the risk

The solution to this isn’t terminating every agreement with any organisation with access to the business’ systems. Operating a business has and will always carry some level of risk, and every organisation is required to have at least some level of relationship with a handful of MSPs. Organisations need to think seriously about striking the right balance between still providing access to MSPs but reducing the risk involved with providing the high level of access to external parties. 

The key is for organisations to perform assessments of their MSPs to ensure that they have sound information security practices and are protecting their environments similarly if not better than the organisation itself. 

Ensuring that the behaviour of MSPs is monitored and investigations into any questionable behaviour is done effectively and immediately is key to ensuring that organisations don’t suffer the consequences of the growing target attract attackers.

Related stories
Top stories
Story image
Digital Transformation
Smartsheet reveals new product innovations during Engage
New features on data visibility, project control and third-party solution integration are in store for local Smartsheet customers.
Story image
Digital Transformation
Ensono delivers cloud economics with engineering resources
The new service offers access to global cloud engineering and DevSecOps experts focused on accelerating digital transformation.
Story image
Artificial Intelligence
ASUS Servers announce AI developments at NVIDIA GTC
The Taiwanese multinational now offers NVIDIA-certified servers with H100 Tensor Core GPU and AI enterprise software suite.
Story image
Software-as-a-Service
Micro Focus HCMX wins honours in cloud management reports
HCMX was also ranked as a market leader among all the participating vendors in the Hybrid Cloud Discovery and Mapping Solutions Tool, 2022.
Story image
Internet of Things
Absolute’s Persistence tech in Insyde’s Snapdragon platforms
Insyde extends Absolute’s secure device management and self-healing endpoint capabilities to a broader range of enterprise-ready devices.
Story image
No-code
Eradicating ‘App Fatigue’ and retention problems through implementing no-code ITSM
Almost always, simplicity is best. Intuitive designs and practical workflows are the keys to preventing fatigue.
Story image
Customer Relationship Management
Digitally evolve the smart way – federated content
Digital transformation became the ‘buzz word’ for many companies. Time to re-evaluate those old legacy systems, move to new and better ways of doing things
Story image
Artificial Intelligence
Ordr improves security and management of connected devices
It has implemented more than 80 integrations within the Ordr Data Lake while adding security enhancements to accelerate zero trust segmentation.
Story image
Cybersecurity
Macroeconomic headwinds driving security up priority list
Current macroeconomic headwinds are driving security up enterprise’s priority list and reshaping the hardware Security Module market.
Story image
Malware
Cybereason delivers nation-state level of protection to enterprises
Cybereason has announced new advancements in Cybereason NGAV that deliver nation-state level protection for organisations of all sizes.
Story image
Observability
Virtualisation Security Market to reach over $7 billion by 2032 - report
A new report from Future Market Insights has found that the Virtualisation Security Market is anticipated to reach a valuation of US $7.6 billion.
Story image
Cybersecurity
Test your API Security with Infinite API Scanner
The effectiveness of API scanning technology can mean the difference between successful and unsuccessful programming outcomes, and often enterprises and IT leaders struggle to get it right.
Story image
Springboard
Springboard, Cataleya to offer switching infrastructure solutions
The partnership bundles Springboard's business intelligence platform with Cataleya's switching solutions to rapidly transform voice and messaging.
Story image
Digital commerce
VTEX and Adyen partner to extend unified commerce experience
"Through our partnership we are creating an all-in-one place that allows sellers to meet customers where they are in the buying process and unlock opportunities."
Story image
Internet of Things
IoT Analytics forecasts continued global growth of cellular IoT
Approximately 2.5 billion modules are forecasted to be shipped by the end of 2022, and wholesale prices are also increasing with the average cellular IoT chipset wholesale selling price growing to 16 % in 1H 2022.
Story image
IoT security
Nozomi Networks and WALLIX strengthen OT network security
By combining WALLIX and Nozomi Networks solutions, end-to-end visibility and traceability for maximum security in an industrial environment is provided.
Story image
Computing
NVIDIA unveils new centralised computing technology for autonomous vehicles
NVIDIA has unveiled DRIVE Thor, a centralised car computer that is set to make the driving experience safer and easier for autonomous vehicles.
Story image
Cybersecurity
StackHawk launches deeper API security test coverage
Expansion of test coverage includes custom scan discovery, custom test scripts and custom test data for REST APIs.
Story image
Customer Relationship Management
Diagnostic: Does your tech stack up for growth?
It’s common for tech companies to encounter limitations in their tech stack as they experience growth. After all, at first, you only need to invest in systems to support the needs of an early-stage or single-entity business.
Story image
Digital Transformation
Alibaba Cloud unveils roadmap for international business
The Chinese firm commits US$1 billion to boost ecosystem capabilities while showcasing new products and comprehensive customer support for complete services.
Story image
Sustainable IT
Equinix partners NUS to use hydrogen tech in data centres
The partners will develop hydrogen fuel technologies for green data centres in tropical climates, and for use in Equinix’s global network.
Aws Marketplace
Learn how to implement a backup and recovery plan for a new generation of Kubernetes-based modern applications
Link image
Story image
Secure Code Warrior
Secure Code Warrior announces Coding Labs innovation
Coding Labs mechanisms allow developers to move from learning to applying secure coding knowledge more efficiently, leading to fewer code vulnerabilities.
Story image
Ransomware
Absolute recognised in KuppingerCole Leadership Compass 2022
The company's Absolute Secure Access was recognised for its ability to protect users and resources while improving the remote worker experience.
Story image
Customer Relationship Management
Salesforce launches the first carbon credit marketplace
Salesforce has introduced the Net Zero Marketplace to make carbon credit purchases simple and transparent, aiming to scale the climate-positive impact.
Story image
Cybersecurity
Aqua Security solution to stop software supply chain attacks
Development and security teams can now proactively address the most critical software supply chain risks from code through runtime.
Story image
iOS
Microsoft announces a variety of new updates to Windows 11
The company says that ​last year’s launch of Windows 11 gave the PC a new outlook and that customer feedback has reflected that it is the most loved version of Windows ever.
AWS Marketplace
Whitepaper: A practical guide for mitigating risk in today’s modern applications
Link image
Story image
Network Management
New report identifies progress and benefits of 5G network lifecycles
Infovista has welcomed the findings of a new industry survey by TM Forum on the use and benefits of the automation within the 5G network lifecycle.
Story image
Hybrid Cloud
Lenovo announces a new end-to-end infrastructure solution
Lenovo infrastructure solutions V3 portfolio delivers innovations to assist companies of all sizes in deploying and managing hybrid multi-cloud and edge environments
Story image
Software-as-a-Service
Jabra launches AI-powered SaaS solution for contact centres
Engineered to transform contact centre call experiences, the solution employs AI technology that provides real-time insights to improve customer calls.
Story image
Customer experience
Nutanix rolls out next era of its global partner program
"Elevate now supports and rewards partners along this entire journey through purpose-built benefits and incentives.”
Story image
Cybersecurity
Kaspersky updates endpoint detection and response solution
"One of the goals was to make all the solutions capabilities accessible for all types of our users, even those who are making their first steps in EDR."
Story image
Data analytics
Cross-team partnerships: The foundation for seamless digital experiences for customers
The region’s digital consumer population will continue to grow exponentially, reaching 370 million by the end of 2022.
Story image
Firewall
Barracuda tackles intensified threat landscape with latest releases
"The Barracuda XDR solution combines data across our security stacks through a single dashboard view, giving us the visibility we need."
Story image
Digital Transformation
Air Liquide successfully deploys Workday HCM across APAC
Air Liquide has successfully deployed Workday Human Capital Management (HCM) to digitally transform its HR processes and capabilities throughout Asia Pacific.
Story image
Malware
SonicWall threat report mid-year update highlights significant threat variance
The 2022 SonicWall Cyber Threat Report mid-year update from SonicWall gives an in-depth insight into many of the current trends across the threat landscape.
Story image
Ransomware
Commvault unveils early warning system, Metallic ThreatWise
A first among data protection vendors, the new cyber deception service detects and contains ransomware threats.
Story image
Customer experience
Loyalty, pricing and service are D2Cs biggest shortfalls
There is a key gap between brand manufacturer drivers for D2C deployment and their executional shortfalls, a new report reveals.
Story image
Spryker
Ready, set, flop: four reasons why your online marketplace could struggle to gain traction
There’s a saying that ‘you have to spend money to make money’. That’s not always the case but the old maxim certainly holds true when it comes to online marketplaces.
Story image
IT infrastructure
Bentley Systems announces finalists for the 2022 Going Digital Awards in Infrastructure
The company says that this annual awards program honours the work of Bentley software users who are advancing infrastructure design, construction, and operations throughout the world.
Story image
Business
Accenture solutions help companies promote diversity, inclusion and equity
Research from experts at Accenture and other third-party sources has revealed some alarming statistics about employees' professional wellbeing and work attitude.