By now, many of you are likely aware of the ransomware situation involving Kaseya VSA that is impacting managed IT services providers and their end customers. Nortec does not use the Kaseya platform. Neither Nortec nor our clients are affected by this attack.
Nortec condemns these attacks and recommends that all organizations refrain from enriching the attackers by paying ransom. We are all in this fight together.
While we have been unaffected by this current incident, we understand that every company will want to take this opportunity to ensure their security, especially with respect to their supply chain. We’ve seen increased attacks that leverage vendors to access unsuspecting companies, such as the case with Target and, more recently, SolarWinds and Kaseya.
Nortec works continuously to improve the security posture not only of our own internal delivery processes and systems, but of every one of our clients.
We monitor and recommend customer improvements, such as enabling multifactor authentication (MFA) on administrative accounts and recommend that all accounts are enrolled for MFA so that they can be challenged in the event of risky or unusual account activity. In addition, we track and report password reuse so that all account identifiers are unique.
Nortec continues to use industry-leading services and do recurring internal and customer assessments quarterly, reviewing systems and configurations. When it comes to cybersecurity, our work is never done. We will continue to review, adjust, and improve our cybersecurity practices based on industry best practices and the threat landscape.
If you’re concerned about your cybersecurity, please don’t hesitate to contact us.
