American Water Works Company was hit by a cyberattack on October 3 and had to shut down some of its systems, including billing. However, there does not appear to be any impact to water or waste water services. The company reported the attack in a filing with the U.S. Security and Exchange commission.
The attack is the most recent in a spate of attacks targeting U.S. water infrastructure, with some tied nation states such as Russia and China. The attack also comes on the heels of a report of a China infiltration of U.S. broadband providers. No threat actor or specific cause has yet been identified in the American Water investigation yet.
On a separate note, MSSPs will be gathering in Austin next week for our third annual MSSP Alert Live event, featuring education, networking and a celebration of the MSSP 250 class of 2024. If you are an MSSP and/or MSP, I can get you a special rate to attend. Get in touch with me at [email protected] and I will hook you up.
And as always, please send your news, tips and insights to me at [email protected].
Today’s MSSP Market Update
1. Partner community launch Barracuda is launching a Partner Sales Engineering (SE) Community to enhance its partner program. The community will provide partners with exclusive access to training labs, scanning tools, live Barracuda product demos, and sandboxes to expand their technical expertise and help customers understand and strengthen their cybersecurity defenses. Rewards and benefits and peer collaboration are incorporated, too.
2. Fortinet rolls out unified platform - Following the all-in-one platform trend, Fortinet rolled out general availability of Lacework FortiCNAPP, a single unified, AI-driven platform to secure everything from code to cloud, all from a single vendor. The enhanced platform now includes automated remediation and blocking of active runtime threats.
3. New BAS testing offering - Tidal Cyber has added breach and attack simulation (BAS) testing. Better targeted tests give organizations better insight into their defenses. The company said this allows defenders to maximize their investments and reach the greatest possible protection for their specific assets.
4. MSPs becoming MSSPs - D&H Distributing expects 63% growth in its “Modern Security” this year, and is making new investments to support it, including doubling the size of its Modern Security team. Modern Security refers to subscription-based SaaS offerings. D&H says this is a significant opportunity for MSPs who want to transition to become successful managed security service providers and expand their revenues.
5. BEC's healthcare impact - Healthcare organizations say business email compromise (BEC)/spoofing/impersonation incidents cause delays in procedures and tests and 57% said their organizations experienced these attacks. That’s according to a new report from Proofpoint and Ponemon.
6. Snyk's conference news - Snyk’s October SnykLaunch product enhancements released at their DevSecCon Summit include AI-powered security, generative AI adoption, enhanced developer experience and broader risk coverage, the company said.
Looking for more news and a list of industry events? Check out the daily news column on our affiliate site ChannelE2E here.