• CEPro_logo_blue-new
  • TOPICS
      • News
        • People & Places
        • Product Briefs
      • Projects
      • Events
      • Control
        • Central Vac
        • Energy/Power
        • HVAC/IAQ
        • Interfaces/Devices
        • Lighting
        • Motorized Shades
        • Whole House Systems
      • Audio/Video
        • Amplifiers/Receivers
        • AV Accessories
        • AV Racks
        • Cabling
        • Displays
        • Furniture
        • Headphones
        • Home Theater
        • Media
        • Mounts/Lifts
        • Multiroom AV
        • Projectors/Screens
        • Speakers/Subwoofers
        • Wireless AV
      • Security
        • Access Control
        • Alarms/Sensors
        • Services/Platforms
        • Surveillance/Cameras
      • Business Support
        • Associations/Buying Groups
        • Cell Phone Boosters
        • Distributors/Reps
        • Operations
        • Recurring Revenue
        • Research
        • Sales/Marketing
        • Software Services
        • Tools/Testers
      • Networking
        • Cellular
        • Devices/Equipment
        • Wireless
        • Wired/Installation
      • Markets
        • Builders
        • Commercial
        • Design
        • Europe
        • Outdoors
        • Resimercial
        • Wellness
      • CE Pro Hub Pages
        • Bose
        • Inside Sound United
        • Nice
        • Savant
  • PRODUCTS
  • RESOURCES
    • Reports/Downloads
    • Buyer’s Guide
    • Webcasts
    • Podcasts
    • Digital Edition
    • CE Pro-iQ
  • SUBSCRIBE
    • CEDIA SHOW UPDATES
    • CEPRO PRINT EDITION
    • CEPRO DIGITAL EDITION
    • CEPRO NEWSLETTERS
  • DISCOVER
    • CEDIA Expo
      • September 29 – October 1
        Dallas, TX
      • VISIT SITE
    • KBIS
      • February 8 – 10
        Orlando, FL
      • VISIT SITE
    • Total Tech Summit
      • November 13-15
        Las Vegas, NV
      • VISIT SITE
    • Commercial Integrator
      • VISIT SITE
    • Security Sales
      • VISIT SITE
    • Tech Decisions
      • VISIT SITE
    • Campus Safety
      • VISIT SITE
    • Design Well
      • VISIT SITE
    • KBB Online
      • VISIT SITE
    • AV-iQ
      • VISIT SITE
    • CE Pro-iQ
      • VISIT SITE
  • Search
  • TOPICS
    • News
      • People & Places
      • Product Briefs
    • Projects
    • Events
    • Control
      • Central Vac
      • Energy/Power
      • HVAC/IAQ
      • Interfaces/Devices
      • Lighting
      • Motorized Shades
      • Whole House Systems
    • Audio/Video
      • Amplifiers/Receivers
      • AV Accessories
      • AV Racks
      • Cabling
      • Displays
      • Furniture
      • Headphones
      • Home Theater
      • Media
      • Mounts/Lifts
      • Multiroom AV
      • Projectors/Screens
      • Speakers/Subwoofers
      • Wireless AV
    • Security
      • Access Control
      • Alarms/Sensors
      • Services/Platforms
      • Surveillance/Cameras
    • Business Support
      • Associations/Buying Groups
      • Cell Phone Boosters
      • Distributors/Reps
      • Operations
      • Recurring Revenue
      • Research
      • Sales/Marketing
      • Software Services
      • Tools/Testers
    • Networking
      • Cellular
      • Devices/Equipment
      • Wireless
      • Wired/Installation
    • Markets
      • Builders
      • Commercial
      • Design
      • Europe
      • Outdoors
      • Resimercial
      • Wellness
    • CE Pro Hub Pages
      • Bose
      • Inside Sound United
      • Nice
      • Savant
  • PRODUCTS
  • RESOURCES
    • Reports/Downloads
    • Buyer’s Guide
    • Webcasts
    • Podcasts
    • Digital Edition
    • CE Pro-IQ
  • SUBSCRIBE
    • CEPRO PRINT EDITION
    • CEPRO DIGITAL EDITION
    • CEPRO NEWSLETTERS
    • CEDIA SHOW UPDATES
  • DISCOVER
    • Cedia Expo
      VISIT SITE
    • Commercial Integrator
      VISIT SITE
    • Security Sales
      VISIT SITE
    • Tech Decisions
      VISIT SITE
    • Campus Safety
      VISIT SITE
    • Design Well
      VISIT SITE
    • Total Tech Summit
      VISIT SITE
    • KBB Online
      VISIT SITE
    • AV-iQ
    • CE Pro-iQ
M
POPULAR SEARCHES
News
Projects
Control
Audio Video
Security
Business Support
Markets
SUBSCRIBE CEDIA EXPO CEPro-iQ
Commercial | Markets | Resimercial | Security
August 11, 2021

Report Finds Service Providers, Integrators In Hackers’ Crosshairs

Security experts warn integrators and service providers to be on high alert after the Kaseya attack.
Zachary Comeau  
Article:
Commercial | Markets | Resimercial | Security
August 11, 2021

Report Finds Service Providers, Integrators In Hackers’ Crosshairs

Following recent supply chain attacks leveraging commonly used remote management tools, MSPs and any company providing managed technology services to a sizeable customer base, security should now be top of mind.

The recent attack that exploited a vulnerability in the Kaseya VSA product and led to a massive ransomware distribution campaign should be sounding the alarm to MSPs and other service providers that they need to do more to secure their environment for their sake and their customers’.

And yes, that includes AV integrators that use software to remotely manage their clients’ installations, especially as systems get deployed on IT networks and as integrators adopt more IT offerings into their portfolio.

The head of the cybersecurity research group that first alerted Kaseya of the vulnerability before the attack recently told Reuters that attacks against service providers will undoubtedly increase.

Now that criminals see how powerful MSP attacks can be, “they are already busy, they have already moved on and we don’t know where,” said Victor Gevers, head of the non-profit Dutch Institute for Vulnerability Disclosure, which warned Kaseya of the weaknesses before the attack.

The Future of Digital Lighting & Control

As a custom integrator, lighting is in demand. Effective communication, education and showcasing the value proposition of LED light fixtures in conjunction with integrative control systems are the keys to overcoming challenges and closing sales in this specialized market. Join us as we discuss the future of digital lighting and control with David Warfel from Light Can Help You and Patrick Laidlaw and Mark Moody from AiSPIRE. Register Now! 

“This is going to happen again and again.”

According to Reuters, Gevers’ team has discovered similar vulnerabilities throughout the IT channel, but he didn’t name names since those issues haven’t yet been fixed.


Related: GuardDog to Offer Cybersecurity Certification During CEDIA Expo 2021

Reuters also spoke with Chris Krebs, the former director of the U.S. Cybersecurity and Infrastructure Security Agency, who said any company with access to another organization’s network is a prime target for a hacker.

“That’s where you find the trusted access to customers’ systems,” said Chris Krebs, the first leader of the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), which has made ransomware a top priority. “It’s a much more economical approach to launch a breakout attack. And it’s hard for the customer to defend.”

Service providers like MSPs and integrators are a valuable and efficient target for cybercriminals because of the access they have to customer networks, which can be in the hundreds or thousands, depending on the service provider’s size.

In the case of the Kaseya attack, the ransomware spread via the tool to up to 1,500 customers of MSPs that used the software, leading to encryptions and hefty ransom demands of up to $5 million.

Now is the time to take steps to protect yourself from compromise, audit the software you use and ensure you aren’t introducing malware into your customers’ environments.


This article originally appeared on our sister publication Commercial Integrator‘s website.

  • Page 1

If you enjoyed this article and want to receive more valuable industry content like this, click here to sign up for our digital newsletters!

ABOUT THE AUTHOR

Follow
Zachary Comeau:
Zachary Comeau is the senior editor of CE Pro. He comes from a journalism background with more than a decade of years of professional experience writing for Commercial Integrator, My TechDecisions, and several daily newspapers and industry trade publications in Massachusetts. He joined CE Pro in June 2023.
View Zachary Comeau's complete profile

ARTICLE TOPICS

Commercial • Markets • Resimercial • Security

ARTICLE TAGS

Cybersecurity

SHARE

Share On Facebook
Share On Twitter
Share On Linkedin
Share On Whatsapp
Share Via Email
Copy URL
← Previous Article Next Article →
Article Business SupportCommercialControlDesignEventsLightingMarketsNewsResimercialWhole-House Systems

Inaugural Lighting Control Trade Show Opens to Great Success in New York

NYControlled brings in an audience of 800+ lighting designers, distributors, educators, engineers, contractors and more in a massive educational/networking tradeshow for lighting controls.
Article Audio/VideoCEDIA ExpoCommercialDisplaysNewsOutdoorsResimercial

SKYWORTH Enters CI Channel with Clarus S1 Outdoor Google TV

Debuting at CEDIA Expo 2023, SKYWORTH USA’s Clarus S1 comes in 65- and 75-inch sizes, produces 3,000 nits brightness and includes a 100-watt Dolby soundbar.
Article Business SupportCommercialControlDesignEventsLightingMarketsNewsResimercialWhole-House Systems

Inaugural Lighting Control Trade Show Opens to Great Success in New York

NYControlled brings in an audience of 800+ lighting designers, distributors, educators, engineers, contractors and more in a massive educational/networking tradeshow for lighting controls.
Article ControlNewsPress ReleasesSecurityServices/PlatformsSurveillance/Cameras

Snap One’s ClareOne Integrates Google Nest Products

The integration of Google Nest products into the ClareOne platform provides dealers with a simple way to offer a host of smart home functions from a unified user experience.

SHOW NEWSLETTER

Sign Up

CE Pro

Subscribe Sign Up

Content Types

News
Products
Projects
Companies
Downloads
Webcasts
Podcasts
Events

Specials

CEDIA EXPO
CE Pro 100
CE Pro Summit
Awards Programs

Company Info

About
Contact Us
Customer Service
Advertise with Us

Subscribe

Magazine
Newsletters
Digital Edition

Connect

Twitter
Facebook
LinkedIn
YouTube
RSS Feed

Categories

AUDIO/VIDEO
AV Accessories
AV Racks
Amplifiers/Receivers
Cabling
Displays
Furniture
Mounts/Lifts
Multiroom AV
Projector Screens
Speakers/Subwoofers
Wireless AV
CONTROL
Central Vac
Energy/Power
Interfaces/Devices
HVAC/IAQ
Lighting
Motorized Shades
Whole-House Systems
NETWORKING
Cellular
Devices/Equipment
Wireless
Wiring/Installation
SECURITY
Access Control
Alarms/Sensors
Services/Platforms
Surveillance Cameras
BUSINESS SUPPORT
Associations/Buying Groups
Distributors/Reps
Operations
Recurring Revenue
Research
Sales/Marketing
Software/Services
Tools/Testers
MARKETS
Builders
Commercial
Design
Europe
Outdoors
Wellness
FOLLOW US ON
  • Follow
  • Follow
  • Follow
  • Follow
  • Follow
  • Follow

© 2023 Emerald X, LLC. All Rights Reserved.

  • ABOUT
  • CAREERS
  • AUTHORIZED SERVICE PROVIDERS
  • DO NOT SELL MY PERSONAL INFORMATION
  • TERMS OF USE
  • PRIVACY POLICY