Managed Security Services Provider (MSSP) News: 06 May 2019
Each business day, MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider, SOC (security operations center) and IT outsourcing ecosystem.
Here’s the daily business update for Monday, May 6, 2019.
13. MSSP for Sale, Seeks Bidders: VirtualArmour International Inc., has retained Capstone Headwaters, an investment banking firm in response to receipt of unsolicited inquiries. The public announcement essentially puts VirtualArmour in play.
12. Middle East Security: Spire Solutions, a valued-added distributor, is promoting CyberArk privileged access management services to its customers in the Middle East.
11. Printer Security: The CERT Coordination Center (CERT/CC) has released information on vulnerabilities affecting PrinterLogic Print Management Software. A remote attacker could exploit these vulnerabilities to take control of an affected system.
10. 5G Security Policies: Global security officials agreed to a set of proposals on May 3 for future 5G networks, highlighting concerns about equipment supplied by vendors that might be subject to state influence, Reuters reports.
9. Australia Cybersecurity Chief Resigns: The head of Australia’s cybersecurity agency, Alastair MacGibbon, has resigned to return to the private sector, a local report says. MacGibbon won’t be leaving until May 28, but his resignation comes in the middle of a federal election campaign. Elections in other nations have been prone to cyber attacks in recent history, the report notes.
8. Dell PCs – Vulnerability: Dell SupportAssist, a remote support program preinstalled on most Dell PCs, contains a serious vulnerability that MSPs need to patch.
7. MegaCortex Ransomware: A new ransomware that calls itself MegaCortex got a jolt of life last week, as Sophos detected a spike in the number of attacks against customers around the world, including in Italy, the United States, Canada, the Netherlands, Ireland, and France.
6. GitHub Hacks, Ransomware Demands: Hundreds of developers have had had Git source code repositories wiped and replaced with a ransom demand, ZDNet reports.
5. IoT Botnet – New Phantom Menace: For the past few weeks, a threat actor who goes online by the name of “Subby” has taken over the IoT DDoS botnets of 29 other hackers, ZDNet has learned.
4. $10 Million Breach Settlement?: Three years after it reported a data breach that compromised customer data at its stores, retailer Eddie Bauer may end up paying about $10 million in a proposed settlement with Waterloo, Iowa-based Veridian Credit Union and other affected financial institutions, Credit Union Times reports.
3. DDoS Attack Targets Power Grid: A distributed denial of service attack successfully interrupted electrical systems in Los Angeles County and Salt Lake County in March, CNBC reports.
2. Managed Vulnerability Service: eSentire, a Top 100 MSSP and Top 20 MDR provider, is leveraging Tenable for a new managed vulnerability service. In a way it sounds like eSentire is hedging its own R&D bets. Current eSentire esRECON clients will have the option to migrate to Tenable.io for co-managed MVS services.
1. M&A – Kaseya Acquires ID Agent: Details are here.