This week, the Department of Homeland Security issued a warning that advanced persistent threat (APT) actors are targeting managed service providers (MSPs) and cloud service providers (CSPs). IT service providers make attractive targets for cybercriminals due to the access they have to their customers’ networks and for the sensitive customer data that they may have stored on their own networks.
In the memo, The National Cybersecurity & Communications Integration Center (NCCIC) notes: “By servicing a large number of customers, IT service providers can achieve significant economies of scale. However, a compromise in one part of an IT service provider’s network can have globally cascading effects, impacting other customers and introducing significant risk.”Advanced persistent threat (APT) actors are targeting Managed Service Providers (MSPs) and Cloud Service Providers (CSPs). @AnneKCampbell Click To Tweet
According to NCCIC, this activity by APT actors had been ongoing since at least 2016 using a variety of tactics. Research shows a spike in attacks targeting service providers in 2018. Trustwave, a managed security service provider, released a report in April showing that service providers now account for just over 9 percent of all the cyberattacks the firm tracks annually, up from nearly zero in 2017.
Anne Campbell is the public relations manager for Barracuda. She's been with the organization since 2014, working on content and public relations for Barracuda MSP, the MSP-dedicated business unit of Barracuda. She started her career in newspaper and magazine journalism, and she brings that editorial point of view the work she does, using it to help craft compelling stories.