Thank you for shining a light on this systemic vulnerability. I don't think organizations realize that, in many ways, they inherit the security of their service providers. As another commenter noted, the RMM is overdue for radical reinvention. Security-minded MSPs may need to think about delegated access to customer environments, privileged access workstations, or other methods for remotely administering customer environments without that big fat one-to-many target that RMM represents. I think the MSP tooling ecosystem is general is problematic - MSPs design for scale and efficiency (making them an economical option for customers as opposed to hiring internally), but do I really want my password manager integrated into my RMM? Maybe not... There's a lot of market share out there waiting for MSPs that can develop real cybersecurity maturity.
Cloud computing has allowed managed IT services to extend beyond the regions and borders that would constrain the average break/fix IT through the adoption of Software as a Service (SaaS) technologies, as well as Infrastructure as a Service (IaaS) and Platform as a Service(PaaS). These capabilities enable managed IT services to scale at a rate dramatically larger and faster than in-house IT operation or break/ fix providers.
LTI is headquartered in Mumbai, India.  A core philosophy for LTI is “Operate, To Transform.” It focuses on an organization becoming an “automation native” rather than addressing automation issues ad hoc. Operate, To Transform is a business and IT framework that allows organizations to pivot quickly and maintain a continuous business transformation function. This approach incorporates a 4D model that extends across four dimensions: operations, landscape, business process KPIs & end user personas.
FRONTEO is a technology and services company specialized in big data, AI, and information governance. FRONTEO is driven by a service-oriented culture that continues to aim higher and brighter to develop state-of-the-art technology and the best services on the market, creating immense value for its customers, employees, consumers, and shareholders. Their focus, defined by their name, is to look to the future and to innovate on how their AI technology can be further applied to legal and other vertical business
IBM has embraced an array of emerging technologies that help organizations build highly integrated and innovative technology platforms that support next-generation capabilities. It focuses heavily on AI, blockchain, IoT, cloud and advanced analytics, including machine learning. The company has taken a lead position in the development of quantum computing frameworks. Although these systems remain in a beta phase for now, IBM R&D is moving the technology from the lab to commercial viability. IBM remains a leader in IT services. It offers a broad array of platforms and services directly or through an MSP model that incorporates other leading tech vendors.

Chris Loehr — executive vice president of Solis Security, an incident response firm — has personally dealt with many of these MSP breaches. Speaking of GandCrab, Loehr says, "They certainly hit some MSPs in 2018, but the ransoms were relatively small: $10,000 to $25,000. In 2019, MSPs became more of a target, with increasing ransom demands and the threat actors leveraging MSP tools with greater efficiency to affect clients. GandCrab never required the MSP to pay up. It wasn't until GandCrab evolved into Sodinokibi in mid-2019 threat actors began to say: 'We ONLY want the MSP to pay. You can pay for ALL the customers or you get NOTHING at all.'"


At NexusTek, we are a managed IT service provider who specializes in meeting the IT needs of small and medium-sized businesses. Our clients outsource their technology needs to us so that they can concentrate on their core business. By using NexusTek as your managed IT service and support provider, you can rest assured that your business will be constantly up to date with the latest relevant technological innovations. Additionally, we partner with best-in-class technology vendors to ensure that your technology hardware and software are well maintained. Furthermore, we also provide disaster recovery services and support so that your data can be readily restored in the event of a disaster.

OSIbeyond was hired by a private social club to provide various IT services that include troubleshooting, preventive maintenance, IT security, relevant training, and others. Within six months, the private social club's security system has been significantly improved, enabling the club to operate remotely. The club hasn't had any data problems, breaches, or any IT security issues since the beginning of the engagement. 

The consulting, professional services and IT services company, headquartered in Bangalore, India, has a presence in 45 countries.  Gartner ranked the firm a “Leader” in its Gartner’s Magic Quadrant for Public Cloud Infrastructure Professional and Managed Service Providers 2019. The Infosys Digital Navigation Framework is a specialized process for unleashing innovation. It incorporates five key factors: design, proximity, agility, automation and learning.


"The biggest thing for me is that, while I'm away from the office and working on other projects, I haven't had to worry about the network. There have been a couple of occasions where issues happened, and [TPx Communications] has been able to resolve them without my involvement, other than just being notified. As far as I'm concerned, that does everything that I want it to do." — IT Systems Manager, Audio-Visual Company
The company integrates its Mode 1-2-3 methodology with a broad array of products and services. The goal is to build a framework for digital growth. As organizations move into Mode 2 and Mode 3, they’re equipped to benefit from more advanced capabilities, including cloud native services, IoT, robotics, deep learning, cognitive computing and neural networks. HCL’s approach span several domains, including IT operations, application delivery, business processes, security and Everything-as-a-Service (XaaS).

NexusTek’s Managed IT services and IT consulting team will skillfully assist your technology needs including remote workforce planning, MultiValue support and services, disaster recovery plan development as well as various other IT projects that are vital to the success of your business. As one of the top IT services, cloud services and cyber security companies in the nation, we have the experience and expertise to help you meet your objectives.
Stratosphere Networks develops and implements B2B IT solutions, both on-premise as well as on hosted solutions, while retaining IT infrastructure at all levels. They have a robust and scalable cybersecurity framework that empowers in-house IT to monitor and manage response and remediation to incidents. Their core solutions include SIEM, managed detection and response, SOC services, virtual CSOs, and other managed security services, along with HIPAA and industry regulation compliance

"The biggest thing for me is that, while I'm away from the office and working on other projects, I haven't had to worry about the network. There have been a couple of occasions where issues happened, and [TPx Communications] has been able to resolve them without my involvement, other than just being notified. As far as I'm concerned, that does everything that I want it to do." — IT Systems Manager, Audio-Visual Company
From the above, it is clear that a managed service provider does not just help with technology adoption. They also help to monitor the ongoing spending and lessen the danger of introducing new technologies. While the market is already witnessing an increase in capital spending on the cloud and businesses managing IT services, it is evolving by itself.
×