MSSP Alert’s regional coverage of managed security services providers, cybersecurity news and events in the Americas and Canada — including the United States, Mexico, Central America, South America and more.

Ransomware Payments: How Pennsylvania Legislation May Impact MSSPs, MSPs

Pennsylvania agencies may be banned from making ransomware payments. Under pending legislation, MSSPs & MSPs could face the following mandates.

Government Cyberattacks: 10 Security Findings From SolarWinds Research

The seventh annual Public Sector Cybersecurity Survey Report from SolarWinds describes federal, state & local government cybersecurity attitudes.

How Many Ransomware Attacks vs. U.S. Local Governments, Schools and Healthcare? The 2021 Answer

More than 2,300 ransomware attacks hit U.S. local governments, schools and healthcare providers in 2021, Emsisoft research found.

NY OAG: Credential Stuffing Attacks Hit One Million User Accounts in 17 Businesses

Credential stuffing cyberattacks are alive and well, according to report from New York’s Attorney General’s office (OAG).

Railroad Cybersecurity: TSA Directives Explained

TSA security directives, influenced by the CISA, require various railroads to strengthen cybersecurity posture & practices. Here’s how.

U.S. Needs “Cyber Doctrine” to Combat Cyberattacks and Hackers, VP Harris Says

Vice President Kamala Harris pitches U.S. “cyber doctrine” concept to mount a more muscular defense against cybersecurity attacks.

Cyber Incident Reporting: A Reprieve for Government MSSPs?

Revised National Defense Authorization Act (NDAA) lacks proposed requirements for reporting cyber incidents & ransomware payments in set timeframes.

House Passes Three Telecom Bills to Fortify Cyber Defenses and Educate Public

The House passes three bills ask the NTIA and the FCC to dive deeper into cybersecurity protections.

Cyber Incident Reporting Rules for Banks: Latest U.S. Federal Regulator Guidance

New cyber incident reporting requirements for U.S. banks and service providers will go into effect in April 2022. Here are the details.

Lewis and Clark Cyberattack: Community College Ransomware Recovery Updates

Ransomware attack closes Lewis and Clark Community College through Dec. 3, 2021. Lewis and Clark IT department works on ransomware recovery. Are MSSPs involved?