Our new Service
the Dean's listAbout The Deans’s list
MSPs are getting Hacked.
Your Managed IT Service Provider (MSP) is supposed to keep you safe and secure, however, many MSPs use shared third-party services to support their end-users. In a recent MSP targeted attack accounts were compromised because there was no multi-factor authentication in place. This resulted in MSP accounts being hacked and ransomware was installed on the MSP clients’ machines (MSSP Alert, 2019).
When something like this happens, we must ask, what was the service provider thinking? Two-factor/Multi-factor authentication is a standard these days and should always be implemented to protect your clients information.
Unfortunately, according to an FBI and U.S. Department of Homeland Security warning to MSPs, hackers have repeatedly targeted MSP software, management consoles, remote control systems and RMM (remote monitoring and management) platforms to target the MSPs end-customer systems with ransomware (Us-cert.gov, 2019).
Could your MSP be next?
Although many MSPs preach security, are they really practicing what they preach?
secure configuration
Do they have a proper and secure configuration of their Remote Monitoring and Management (RMM) software tools, including Multi-factor authentication and proper identity and access management with audit controls?
workstation security policy
How about a workstation security policy for their technicians that outlines the appropriate measures that must be taken when using workstations to ensure the confidentiality, integrity, and availability of there end-customer systems?
hardened Technicians OS
Are the operating systems the technicians use hardened? Hardening a system by removing functionalities that are not necessary from a tech’s workstation drastically reduces surface vulnerabilities.
About The Deans’s list
WHAT is The Dean’s list
We’d like to offer our services in providing businesses peace of mind. Reach out to us today and with your MSP approval, we will conduct an MSP specific evaluation that’s designed to ensure they’re doing everything in their power to keep you safe. If your MSP is following best practices and passes the evaluation, we will add them to the Dean’s List.
I’m the founder of the Dean’s list and I hold and maintain a number of high-level certifications in Cyber Security, Cloud Infrastructure, Server and System Administration, Project Management, and IT Service Management. I do this to ensure my team and I have the knowledge we need to provide the best evaluations for our clients. This allows them to maintain the confidentiality, availability and integrity of their information.
The Dean’s List MSP accreditation is whereby InteGreat IT grants public recognition to Managed IT Service Providers (MSP) that meet our established qualifications and standards as determined through initial and periodic evaluations.
Contact us today for a free consultation.
References
- MSSP Alert. (2019). Hackers Hit MSP Software to Launch Ransomware Attacks – MSSP Alert. [online] Available at: https://www.msspalert.com/cybersecurity-breaches-and-attacks/ransomware/hackers-hit-msp-software/ [Accessed 23 Jun. 2019].
- Us-cert.gov. (2019). APTs Targeting IT Service Provider Customers | US-CERT. [online] Available at: https://www.us-cert.gov/APTs-Targeting-IT-Service-Provider-Customers [Accessed 23 Jun. 2019].
Certificates
Trusted & Certified by
Get In Touch
Mt Laurel, NJ, USA
dcolomban@integreatit.com
(856) 448-4683