Managed Security Services Provider (MSSP) News: 23 August 2021

Each business day, MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.

A. Today’s MSSP, MDR, XDR and Cybersecurity News Alerts

1. Microsoft Exchange Server & ProxyShell Cyberattacks: To protect customers, MSPs and MSSPs should patch these three Microsoft Exchange Server vulnerabilities, CISA alert says.

2. LockFile Ransomware: Symantec Enterprise says hackers have leveraged the the PetitPotam exploit to compromise Windows domain controllers and launched LockFile ransomware attacks against at least 10 organizations.

3. Cyberattacks Against Schools Climb: Cyberattacks and ransomware hits against the education sector continue to climb steadily, Check Point Research reports.

4. Hurricane Scams & Malware: Amid tropical storm Henri, the CISA (Cybersecurity and Infrastructure Security Association) is warning users to beware hurricane-related malware scams and "exercise caution in handling emails with hurricane-related subject lines, attachments, or hyperlinks."

5. XDR (Extended Detection and Response): Palo Alto Networks has introduced Cortex XDR 3.0. The upgrade features extended detection, monitoring and investigation capabilities for cloud environments, the cybersecurity company says.

6. Research - Business Email Compromise (BEC) Attacks: Hackers still favor email as their vector of choice and business email compromise (BEC) as their go-to tactic for infecting organizations worldwide, according to a 2021 Mid-Year Global Threat Report from Zix.

7. Report - U.S. Federal Cybersecurity Shows Progress: Here's the evidence from the U.S. Cyberspace Solarium Commission.

B. MSSP, MDR and Cybersecurity Virtual Events and Conference Calendar