Managed Security Services Provider (MSSP) News: 04 November 2019
Each business day, MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across that managed security services provider ecosystem.
- The Content: Written for MSSPs, SOC as a Service (SOCaaS), Managed Detection and Response (MDR) and MSP security providers — and those who need to partner up with such companies.
- Frequency and Format: Every business morning. Typically one or two sentences for each item below.
- Reaching Our Inbox: Send news, tips and rumors to Joe@AfterNines.com.
A. Today’s MSSP Alerts
1. M&A – Risk Mitigation: CynergisTek has acquired Backbone Consultants, a provider of IT risk advisory services. The acquisition expands CynergisTek’s cybersecurity, privacy, and IT risk advisory services and is consistent with CynergisTek’s strategic plan to grow managed services through targeted, accretive acquisitions, the buyer says.
2. SIM Hack Lawsuit: Seattle-based angel investor Gregg Bennett has filed suit against crypto exchange Bittrex. The case involves a SIM swap hack that netted criminals 100 bitcoin, currently worth nearly $1 million, CoinDesk reports.
3. Ransomware Attack – Canadian Government: Ransomware attacked the government of Nunvaut’s communications system early Saturday morning, and as of Sunday night officials still did not know when systems would come back online, CBC reports.
4. Example Cyber Insurance Policy: The city of Grand Forks has purchased $500,000 of coverage for an annual policy premium of $7,828, Grand Forks Herald reports.
5. Phishing Attack Triggers Pond Hopping: Utah Valley Eye Center of Provo, Utah is warning patients that some of their personal information may have been accessed by an unauthorized individual following a security breach involving its scheduling reminder portal in June 2018, HIPAA Journal reports. The incident apparently started with a successful phishing attack that allowed hackers to pond hop from the eye center to its end-customers.
6. Amazon Alexa – Crime Scene: Police have gained a search warrant to see if Amazon Alexa speakers recorded sound during a fatal altercation in July, according to this report.
7. Are Software Companies Liable?: Consider the following situation. A software company develops a legitimate application. But a hacker uses that application or tool for nefarious purposes. A recent FTC enforcement apparently finds software developers liable for that use — and that could set a dangerous precedent, according to Security Boulevard.
B. MSSP Partner Programs and Strategic Alliances
C. Next Five Cybersecurity Conferences
- Qualys Security Conference (November 18-21, Las Vegas)
- Infosecurity and ISACA North America Expo and Conference (November 20-21, New York)
- PercyhCon 2020 MSP Security Conference (January 29-31, Tampa, Florida)
- RSA Conference 2020 (February 24-28, San Francisco)
- Bonus: The complete MSSP Alert calendar
Email me your news, rumors and tips for potential coverage here on MSSP Alert.