I tried to start a conversation on a couple of the FB groups but nobody seemed interested. Then I saw Tom’s last video about MSP security so I thought I’d try here.
With MSP attacks growing exponentially I wonder if it wouldn’t be helpful to start a conversation on how you’re protecting yourself and your company from MSP hacks. I’m not just talking about good firewalls and passwords. I’m talking more about your security practices when using your RMM and other management portals both at your place of work and even while on the road? Session timeouts? Restricted IPs? 2FA? Etc.
Like Tom, I’m an SW shop so we have 2FA turned on as well as email verification if the RMM is used from an unknown IP address. We also have a session timeout set. I used to just leave my RMM up and running on my primary PC back at my shop but now that is subject to session timeout too.
Is there anything else you guys are doing to help prevent these MSP hacks? For example, do you exlusively use your laptop to access your portals while onsite? Or have you occasionally used a client PC to access your systems? Are there any tools you use to help with securing your own systems?
I realize that use cases can vary greatly but I think it would be a good exercise for all of us MSPs to have a dialog about what we’re doing to keep ourselves secure.