filmov
tv
Saa$y MSP Community Call | 03.21.24
Показать описание
Partnerships, Cyber Attacks, and Newsletter Success
Jim, Andrew, and Charles shared their experiences with partners and prospects, highlighting success stories of partnerships and instances of detecting cyber attacks. The team considered the idea of having users opt-in for proactive measures against cyber attacks, with the potential involvement of Ben Jones or Black Hills. They also discussed the positive response to their newsletter and the availability of a webinar detailing the report's highlights.
Aggregated Data Analysis and Risk Assessment
Jim presented the aggregated data from 2023, highlighting that their MSP community assessors were servicing almost 19,000 small businesses worldwide. The discussion then moved to an analysis of the data collection parameters, including the size of the tenants and the countries with the most user activity. A question was raised by Andrew about a potential increase in Russia's activity, which Charles confirmed had occurred, suggesting that Russia might be hiding their geolocation in other countries. The team also discussed the symbiotic relationship between China and Russia, and the potential collusion between the two countries during the onset of the Ukraine war.
Unauthorized Logins and Application Analysis
Jim discussed the analysis of unauthorized logins, with India having the highest number, followed by Singapore, Philippines, Germany, and Spain. He also highlighted the importance of tracking all events, including low severity ones, to detect potential attacks. The team discussed the applications causing the most activity, with Microsoft being the most active, and Slack generating a high number of critical alerts due to its file sharing and invite features. Charles suggested that the high number of alerts from Slack could be attributed to the large number of file-sharing invites from various unwhitelisted regions.
Cybersecurity Breaches, Fortify Platform, and MFA
Jim reported on the company's performance in handling cybersecurity breaches in 2023, with 7,900 breaches identified and stopped within 5 to 15 minutes on behalf of partners. He also highlighted the successful launch of the Fortify platform, which led to an increase in Microsoft security scores and an improvement in the security posture of their customers. Jim also discussed the increasing use of MFA by their customers, although he noted a disappointing increase from 32% to 35%. Finally, he mentioned the extensive use of third-party applications by their Microsoft 365 users and the high volume of file sharing, while urging the team to ensure orphaned links are directed to specific individuals.
Microsoft E3 and Business Premium Licenses
Jim discussed the differences between Microsoft E3 and Business Premium licenses, emphasizing that the latter, when coupled with SaaS, offers better security at a lower cost. He suggested that many customers currently on E3 could benefit from the Business Premium license with the SaaS bundle. Andrew agreed, noting the importance of third-party security in the current climate. Brian questioned the $3 price point for the SaaS bundle, and Jim reassured him that it was an average price and one that was unlikely to meet much resistance. He recommended using the coverage extension notification system to communicate the change to customers.
Legal Documentation and Insurance Coverage Discussion
Andrew and Jim discussed the importance of legal documentation, particularly in relation to cybersecurity and customer advice. They emphasized the need for clear agreements with customers to ensure their services are covered by insurance, and highlighted the significance of the coverage extension notification. The discussion also touched on the importance of consulting with qualified attorneys when adding new services, and the potential risk of lawsuits due to inadequate insurance coverage. Michelle was set to discuss insurance matters further, with Andrew noting his intention to continue presenting on this topic.
Beltex Webinar, SaaS Office Hours, and Alerts
The team discussed the new Beltex program, which aims to assist partners' clients in obtaining insurance more easily. They also talked about SaaS office hours and shared information about SaaS security trends.
Reviewing Popular Topics and Upcoming Updates
Andrew and Jim reviewed the most popular topics from the previous year's meetings, identifying 'secure onboarding' as the highest-rated session. They discussed potential focus areas for future meetings, including 'catching insider threats' and 'data expell for external threat actors'. They also shared updates on their API, with the addition of AWS Cloud Trail being the most requested. Jim announced upcoming events and revealed plans for new features, including the ability to monitor Roost in Tampa in June. Lastly, Charles informed the team that he would not be present in the following Thursday's meeting due to his travel plans.
Jim, Andrew, and Charles shared their experiences with partners and prospects, highlighting success stories of partnerships and instances of detecting cyber attacks. The team considered the idea of having users opt-in for proactive measures against cyber attacks, with the potential involvement of Ben Jones or Black Hills. They also discussed the positive response to their newsletter and the availability of a webinar detailing the report's highlights.
Aggregated Data Analysis and Risk Assessment
Jim presented the aggregated data from 2023, highlighting that their MSP community assessors were servicing almost 19,000 small businesses worldwide. The discussion then moved to an analysis of the data collection parameters, including the size of the tenants and the countries with the most user activity. A question was raised by Andrew about a potential increase in Russia's activity, which Charles confirmed had occurred, suggesting that Russia might be hiding their geolocation in other countries. The team also discussed the symbiotic relationship between China and Russia, and the potential collusion between the two countries during the onset of the Ukraine war.
Unauthorized Logins and Application Analysis
Jim discussed the analysis of unauthorized logins, with India having the highest number, followed by Singapore, Philippines, Germany, and Spain. He also highlighted the importance of tracking all events, including low severity ones, to detect potential attacks. The team discussed the applications causing the most activity, with Microsoft being the most active, and Slack generating a high number of critical alerts due to its file sharing and invite features. Charles suggested that the high number of alerts from Slack could be attributed to the large number of file-sharing invites from various unwhitelisted regions.
Cybersecurity Breaches, Fortify Platform, and MFA
Jim reported on the company's performance in handling cybersecurity breaches in 2023, with 7,900 breaches identified and stopped within 5 to 15 minutes on behalf of partners. He also highlighted the successful launch of the Fortify platform, which led to an increase in Microsoft security scores and an improvement in the security posture of their customers. Jim also discussed the increasing use of MFA by their customers, although he noted a disappointing increase from 32% to 35%. Finally, he mentioned the extensive use of third-party applications by their Microsoft 365 users and the high volume of file sharing, while urging the team to ensure orphaned links are directed to specific individuals.
Microsoft E3 and Business Premium Licenses
Jim discussed the differences between Microsoft E3 and Business Premium licenses, emphasizing that the latter, when coupled with SaaS, offers better security at a lower cost. He suggested that many customers currently on E3 could benefit from the Business Premium license with the SaaS bundle. Andrew agreed, noting the importance of third-party security in the current climate. Brian questioned the $3 price point for the SaaS bundle, and Jim reassured him that it was an average price and one that was unlikely to meet much resistance. He recommended using the coverage extension notification system to communicate the change to customers.
Legal Documentation and Insurance Coverage Discussion
Andrew and Jim discussed the importance of legal documentation, particularly in relation to cybersecurity and customer advice. They emphasized the need for clear agreements with customers to ensure their services are covered by insurance, and highlighted the significance of the coverage extension notification. The discussion also touched on the importance of consulting with qualified attorneys when adding new services, and the potential risk of lawsuits due to inadequate insurance coverage. Michelle was set to discuss insurance matters further, with Andrew noting his intention to continue presenting on this topic.
Beltex Webinar, SaaS Office Hours, and Alerts
The team discussed the new Beltex program, which aims to assist partners' clients in obtaining insurance more easily. They also talked about SaaS office hours and shared information about SaaS security trends.
Reviewing Popular Topics and Upcoming Updates
Andrew and Jim reviewed the most popular topics from the previous year's meetings, identifying 'secure onboarding' as the highest-rated session. They discussed potential focus areas for future meetings, including 'catching insider threats' and 'data expell for external threat actors'. They also shared updates on their API, with the addition of AWS Cloud Trail being the most requested. Jim announced upcoming events and revealed plans for new features, including the ability to monitor Roost in Tampa in June. Lastly, Charles informed the team that he would not be present in the following Thursday's meeting due to his travel plans.
0:44:32
0:59:22
0:56:27
0:50:40
0:57:23
0:57:14
0:56:17
0:55:37
0:57:48
1:00:57
0:55:40
0:58:38
0:56:52
1:01:55
0:55:43
1:00:51
1:03:04
0:58:18
0:57:51
0:55:38
1:00:15
0:57:03
0:56:50
0:57:33