Mitigations and Hardening Guidance for MSPs and Small- and Mid-sized Businesses

Cyber threat actors are known to target managed service providers (MSPs) to reach their customers. MSPs provide remote management of customer IT and end-user systems and generally have direct access to their customers’ networks and data. By exploiting trust relationships in MSP networks, cyber threat actors can gain access to a large number of the victim MSP customers. This CISA Insights provides mitigation and hardening guidance for MSPs and their small- and mid-size business customers. By applying this guidance, organizations can protect MSP customer network assets and reduce the risk of successful cyberattacks.