The recent compromise of the networks of several companies via the abuse of a remote access tool used by MSPs exemplifies why state-aligned threat actors should be on the radars of IT service providers
Managed service providers (MSPs) that don’t consider themselves targets for state-aligned threat actors may need to think again. While many people may associate advanced persistent threat (APT) groups with cyberespionage targeting only state agencies and large corporations, the fact is that some of these groups have increasingly been setting their sights on managed service providers (MSPs) with an eye towards ultimately targeting their customers.
Case in point: earlier this week, we wrote about how an Iran-aligned APT group called MuddyWater had gained access to the networks of several companies by abusing a remote access tool used by MSPs.