Security News > 2022 > May > FBI, CISA, and NSA warn of hackers increasingly targeting MSPs
Multiple cybersecurity and law enforcement agencies from FVEY countries shared guidance for MSPs to secure networks and sensitive data against these rising cyber threats.
"The UK, Australian, Canadian, New Zealand, and U.S. cybersecurity authorities expect malicious cyber actors-including state-sponsored advanced persistent threat groups-to step up their targeting of MSPs in their efforts to exploit provider-customer network trust relationships," the joint advisory reads.
Threat actors successfully compromising an MSP could enable follow-on activity-such as ransomware and cyber espionage-against the MSP as well as across the MSP's customer base."
FVEY cybersecurity authorities have issued other advisories [1, 2, 3, 4] across the last several years with general guidance for MSPs and their customers.
"We know that MSPs that are vulnerable to exploitation significantly increases downstream risks to the businesses and organizations they support," CISA Director Jen Easterly said.
"Securing MSPs are critical to our collective cyber defense, and CISA and our interagency and international partners are committed to hardening their security and improving the resilience of our global supply chain."
News URL
Related news
- NSA, FBI Alert on N. Korean Hackers Spoofing Emails from Trusted Sources (source)
- Microsoft: APT28 hackers exploit Windows flaw reported by NSA (source)
- Microsoft: APT28 hackers exploit Windows flaw reported by NSA (source)
- NSA warns of North Korean hackers exploiting weak DMARC email policies (source)
- CISA warns of hackers exploiting Chrome, EoL D-Link bugs (source)