For the last several years,  MSP partners  have been making a tough decision – should I build  cybersecurity  within my own business or outsource it?  Until a few years ago, the manual nature of  SOC technology  and  cybersecurity   talent made it very difficult to build your own service.  Today there are many new, more robust solutions available which make the decision to build much easier. To decide, first look at what you are providing to your customers today.  Do you provide high touch personalized support?  Do you currently manage their firewalls, mail, and endpoint security?  If you currently have staff that provides these types of services, it may make sense to consider building your own. When we are at conferences, we hear very similar feedback.  There are thousands of  MDR providers , and as with any type of partner, there are good ones and some not-so-good ones. They have the same challenges you ...

  A year has passed since the  Colonial Pipeline  Ransomware attack that caused  Colonial Pipeline  to stop service for five days. This attack created a huge fuel shortage for eastern and southern states, and forced  Colonial Pipeline  to pay a hefty $4.4 million ransom. Ransomware attacks have continued unabated since then, with the most recent ones including LAPSUS$ and ONYX. (These not only encrypt the file, but also threaten to destroy the whole system.) Black Kite has released its 2022 Third-Party Breach Report, highlighting that Ransomware became the most common  attack  method of third-party attacks in 2021. All it takes is one hole: one stolen password, one open port (even just for a short period of time for testing), or one software vulnerability such as Log4j to leave the Ransomware door open. Here are some lessons we have learned from the  Colonial Pipeline attack  and what organizations should do to protect themselves: ...

  In this tumultuous software equity market, where corporate valuations are coming back to levels based on fundamentals, one private software company stands out –  Rippling . Rippling is an all-in-one HR & IT platform built from the ground up for managing everything related to employees. The key word there is  everything  – that is the company’s strategy: to be a single platform and displace siloed tools that manage aspects of the employee experience. Rippling just  raised another $250 million at an $11.25 billion valuation , with supposedly over $100 million in annual recurring revenue, and they certainly have everyone’s attention. What does Rippling have to do with security or XDR?  Nothing directly (however, if they really solve app and device management for employees, that solves a serious corporate security issue today), but it serves as perhaps the most relevant analogy for  XDR’s  future. Over the last decade or two, software across all...