Organizations are relying more than ever on managed service providers (MSPs) for security as cyber risks skyrocket, and many are feeling the pressure.
More than half (58%) of MSP leaders believe customers are at more risk today than this time last year, and 84% said that customers now expect them to manage either their cybersecurity infrastructure or their cybersecurity and IT estate combined.
This marks a significant increase from last year, when the figure stood at just 65%.
More than three-quarters (77%) of MSP leaders told CyberSmart researchers that they're experiencing increased scrutiny of their own businesses’ security capabilities over the past 12 months - meaning that MSPs need to choose their cybersecurity partners carefully.
“In light of the recent uptick of cyber incidents targeting MSPs, it is unsurprising that customers are scrutinizing MSPs more,” said Jamie Akhtar, CEO and Co-Founder of CyberSmart.
“This means that it’s critical for MSPs to work with cybersecurity partners that are able to provide a high level of confidence and security for both their own and their customers’ cybersecurity to align with increasingly stringent expectations and rising threats.”
Just over eight-in-ten MSPs have increased their spending on specialist cybersecurity hires, researchers found, while 78% have upped spending on their security capabilities.
Similarly, six-in-ten have invested in specialist regulatory hires while 64% have increased spending on regulatory compliance capabilities.
AI tops the list of worries for MSPs
The biggest security worry is AI, CyberSmart found, which is now the main headache for 38% of MSPs. Ransomware or malware topped the list for the same number.
Meanwhile, 35% were most concerned about insider threats and 32% flagged concerns over unpatched vulnerabilities.
This is a big change from last year, when malware and ransomware were the top worry for 55%, and inflation and spiraling costs for 43%.
However, the study also indicated that MSP customers may be underestimating the threat of supply chain attacks, which are now viewed as a significant risk by just one-in-five.
Over the last year, there have been a number of high-profile breaches of MSPs, including the Advanced Computer Software Group, fined £3 million by the UK's Information Commissioner's Office (ICO) over security failings that led to a ransomware attack on the NHS.
More recently, the DragonForce ransomware gang breached an MSP’s remote monitoring and management (RMM) tool in order to carry out a supply chain attack.
Of the 900 MSP leaders surveyed by CyberSmart, 69% reported being breached at least twice in the last 12 months - slightly up on last year - while 47% said they'd had three or more breaches in the last year.
"As trusted partners to millions of businesses across the globe, MSPs typically have access to clients’ infrastructure and inner workings," the researchers warned. "This renders them a highly lucrative target, whether for their own data or their clients."
MORE FROM CHANNELPRO
- ManageEngine debuts new MSP platform to streamline IT operations
- SonicWall CEO Bob VanKirk hails ‘pivotal moment’ as firm unveils new MSP cyber solutions
- MSP security confidence remains high despite rising breaches, research finds
-
Warning issued over climate change impact on semiconductor supply chainsNews Research from PwC shows climate change could severely disrupt copper mining in key markets, creating a knock-on effect for the semiconductor supply chain.
-
Hybrid cloud has hit the mainstream – but firms are still confused about costsNews How do you know if it's a good investment if you don't have full spending visibility?
-
IT management and security in the modern age: Moving away from fragmentation towards seamless successSponsored Content Proper endpoint, user, and business management demands a unified approach
-
MSP security confidence remains high despite rising breaches, research findsNews CyberSmart's annual MSP Survey has revealed that 69% of MSPs were hit by multiple breaches over the last year
-
Redstor and TitanHQ merge to create ‘MSP-first’ security provider
News The new business Redstor’s and TitanHQ’s solutions to create a unified and integrated MSP security platform
-
GoTo and Acronis partnership looks to bolster endpoint management for MSPsNews The new strategic partnership includes the launch of the LogMeIn Data Protection Suite powered by Acronis
-
CrowdStrike announces integration with Nvidia Enterprise AI FactoryNews Organizations can now leverage CrowdStrike protection within Nvidia Enterprise AI Factory deployments
-
SonicWall CEO Bob VanKirk hails ‘pivotal moment’ as firm unveils new MSP cyber solutionsNews The company is expanding its MSP solutions range and ramping up its focus on platform-based security
-
Bugcrowd’s new MSP program looks to transform pen testing for small businessesNews Cybersecurity provider Bugcrowd has launched a new service aimed at helping MSP’s drive pen testing capabilities - with a particular focus on small businesses.
-
Strategies for guarding against emerging cyber risks and invisible threatsIndustry Insights Attacks are evolving at a rapid pace, here are the key areas where the channel can help businesses bolster their defenses for the year ahead
