MSP
Safeguard articles tagged "MSP" — guides, analysis, and best practices for software supply chain and application security.
8 articles
Qilin Ransomware Supply Chain Tactics 2025
Qilin became a top ransomware operator in 2024-2025 by pairing edge-device exploitation with managed service provider compromise. Here is the supply chain breakdown.
Sify Technology and US Enterprise Reach: What We're Evaluating
A closer look at the enterprise accounts, verticals, and delivery capabilities that make Sify Technology (USA) an interesting partner for Safeguard.
UK CSR Bill: Relevant MSPs and Data Centres Brought Into Scope
The UK Cyber Security and Resilience Bill introduced on 12 November 2025 expands the NIS regime to 900-1,100 managed service providers and large data centres.
Play Ransomware: Supply Chain Exploitation Through Managed Service Providers
Play ransomware refined the MSP attack model, exploiting FortiOS and RDP vulnerabilities to cascade through managed service providers into hundreds of downstream organizations.
Medusa Ransomware: How Supply Chain Infiltration Became Their Signature Move
Medusa ransomware operators have refined a playbook that targets managed service providers and software vendors as stepping stones into hundreds of downstream victims.
Conti Ransomware Supply Chain Patterns
Before Conti splintered in 2022, its affiliates turned MSPs, RMM tools, and identity infrastructure into repeatable supply chain attack paths.
Kaseya VSA Ransomware: A Supply Chain Analysis
REvil chained three zero-days in Kaseya VSA to push ransomware through 1,500 MSP customers on July 2, 2021. Here is the technical anatomy.
Kaseya VSA Ransomware: Supply Chain Attack Hits 1,500 Businesses
REvil exploited Kaseya's VSA platform to push ransomware to managed service providers and their customers. Up to 1,500 businesses were hit in a single weekend.