Managed Security Services Provider Morning News: 19 June 2017


Each morning MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider ecosystem.

Here’s the lineup for Monday, June 19, 2017:

8. Talent: The State of Idaho has appointed its first cybersecurity director. Jeffery Weak will harden the state's systems and protect citizen data, an effort that officials say "only begins the process" of improving cybersecurity in Idaho, according to StateScoop.

7. Another Retail Hack: Apparel retailer Buckle Inc. of Nebraska said on Friday that credit card information of some of its customers may have been compromised after its payment system was breached by a "criminal entity" following purchases made at some of its stores, according to Reuters.

6. SMB Port Exposed: Post-WannaCry, roughly 5.5 million devices still expose an SMB port -- a surefire indicator that thousands of organizations still haven't taken basic steps to stop the malware and ransomware variants...

5. Avaya Transforming Into Managed Security Services Provider: Yes Indeed. We'll share more details later today...

4. Hacker Pleads Guilty: Sean Caffrey has fessed up to hacking into the Department of Defense (DoD) system in 2014, stealing the ranks, usernames and email addresses of more than 800 users. The National Crime Agency (NCA) reports that Caffrey also got away personal information from as many as 30,000 satellite phones connected to the network, according to The Inquirer.

3. Hackers Target Casinos: FireEye has identified a hacker group that's targeting casinos in Canada. For details check out chatter involving FIN10. We may share share more information soon.

2. ConnectWise Automation Nation: We're tracking dozens of security companies at this week's ConnectWise Automation Nation 2017 conference in Orlando, Fla. Several hundred MSPs are set to attend. Key movers at the event include AlienVault, AppRiver, Cylance, Sophos and Webroot. Here are 20 potential security moves at the conference and there implications for MSSPs.

1. MSSPs vs. MDRs?: The overlap between managed security service providers (MSSPs) and MDR  (managed detection and response ) providers like eSentire will decrease in the next 24 months, Gartner predicts. Major MSSPs will offer some sort of MDR service. However, Gartner also states that, “The difference between MSSPs and leading MDR providers is expected to continue to favor MDR-specific players for at least another five years, or perhaps longer.” Hmmm... We'll share more thoughts soon.

Joe Panettieri

Joe Panettieri is co-founder & editorial director of MSSP Alert and ChannelE2E, the two leading news & analysis sites for managed service providers in the cybersecurity market.