In my neck of the woods, the 250th anniversary of Paul Revere’s famous midnight ride from Boston to Lexington, Massachusetts, to warn that the British were coming is being reenacted today. For the colonial militia, communication was via lanterns hung in the Old North Church in Boston. The signal was one lantern if the British were coming by land, and two if they were coming by sea.
Fortunately, you don’t have to wait for a lantern to be lit to get this week’s channel news! Just scroll below for the latest cybersecurity and compliance solutions, new offerings to curb shadow GenAi and SaaS sprawl, channel movers and shakers making moves, and more. Also, new research shows why your clients should think twice about paying ransom if they experience a cyberattack. Plus, we’re offering a freebie you won’t want to miss (hint: it could accelerate your MSP business), so be sure to read all the way to the end! 😊But hurry, because we’re running out of the offer!
Happy reading!
Products & Solutions
Beachhead Solutions Launches ComplianceEZ for MSPs
Beachhead Solutions, provider of cloud-managed PC and mobile device encryption, security, and data access control for MSPs, launched ComplianceEZ. Built into BeachheadSecure for MSPs, ComplianceEZ allows MSPs to document their clients’ compliance with security controls across various regulatory frameworks.
BeachheadSecure’s software provides 68 software controls satisfying more than 800 of the requisite controls of NIST CSF, NIST 800-171, CIS, CMMC 2.0, the FTC Safeguards Rule, HIPAA, ISO 27001, and more.
BeachheadSecure for MSPs enforces numerous security and access controls on a wide range of client devices. These include PCs, Macs, USB storage, phones, tablets, and servers. With ComplianceEZ, MSPs can now view how the specific controls they have in place for clients—for data access control, encryption, automated risk responses, and more—map to individual mandates within regulatory frameworks.
ComplianceEZ also provides real-time evidence of the platform actively addressing each specific compliance control. If and when incidents occur, an MSP utilizing ComplianceEZ can deliver a client’s compliance posture to regulatory auditors.
The BeachheadSecure for MSPs platform includes the new tool for no additional cost. In addition, the company is offering free-forever licenses to BeachheadSecure for MSPs (including ComplianceEZ) for MSPs’ internal use.
“With regulatory enforcement intensifying across nearly all industries, MSPs need thorough and easy-to-use tools to ensure their clients are not just compliant, but can prove it at a moment’s notice,” said Cam Roberson, VP, Channel, Beachhead Solutions, in a press statement. “It’s no longer a question of if your clients will be audited. But achieving compliance for your clients means knowing you’re ticking the right boxes. ComplianceEZ is designed to be that essential tool in an MSP’s arsenal, allowing them to add significant value to their service offerings and differentiate themselves in a competitive market.”
ConnectSecure Extends Risk Assessments to Google Workspace
ConnectSecure, a provider of vulnerability and compliance management solutions for MSPs, introduced its new Google Workspace Assessments, expanding its cloud assessment capabilities beyond Microsoft 365. This new capability in ConnectSecure’s vulnerability platform enables MSPs to assess, detect, and mitigate risks within their clients’ Google Workspace environments. It’s designed to proactively reduce risk across a suite of cloud applications, including Gmail, Google Drive, Google Meet, and Calendar
With Google Workspace Assessments, MSPs can now identify vulnerabilities, flag configuration issues, and generate client-facing reports—all within minutes.
“We built this tool to help MSPs offer immediate, high-value insights into their clients’ cloud security posture,” said Srikant Sreenivasan, president of ConnectSecure, in a press statement. “With just a few clicks, MSPs can now deliver powerful assessments that spotlight misconfigurations, highlight vulnerabilities, and demonstrate true cybersecurity value to their clients.”
This new offering complements ConnectSecure’s broader mission: to deliver a single, unified platform for risk assessments across networks, endpoints, vulnerabilities, Microsoft 365, and now Google Workspace.
Cato Networks Introduces GenAI Security Controls to Mitigate Shadow AI Risk
Cato Networks, a SASE vendor, announced generative AI security controls for Cato CASB (Cloud Access Security Broker), a native feature in the Cato SASE Cloud Platform.
New capabilities for GenAI applications include a shadow AI dashboard and a policy engine.
With the new GenAI security controls for Cato CASB, security and IT teams can:
- Distinguish between sanctioned and unsanctioned use by identifying all GenAI applications and classifying them. Cato offers a catalog of 950+ GenAI applications.
- Ensure responsible use of GenAI by defining and enforcing access policies at a granular level.
- Control which GenAI applications can be accessed and exactly what actions (upload, download, etc.) can be done within them.
- Limit or prevent sensitive data from being uploaded to large language models, avoiding data security and confidentiality violations in real time.
- Enable adoption of GenAI usage with full visibility to all user activities, and in a manner that aligns with corporate policies and regulatory standards.
The GenAI security controls for Cato CASB are generally available for customers globally.
Josys Introduces SaaS Management Scorecard
Josys, a SaaS Management platform, unveiled an analytics dashboard for surfacing and addressing security and efficiency gaps in SaaS management. Additionally, the company introduced a series of hands-free, automated access management workflows built to enforce zero-trust principles and enhancements to its user interface.
Josys designed the SaaS Management Scorecard with the aim of providing a holistic assessment of SaaS Management performance alongside a series of personalized recommendations to help IT reduce risks associated with their SaaS footprint as well as unnecessary costs.
The SaaS Management Scorecard measures the effectiveness of an organization’s SaaS management practices across four key dimensions: apps, licenses, accounts, and access. The Scorecard surfaces key opportunities for improvement and provides single-click access for remediating issues that are impacting their overall score. Over time, the Scorecard will present longitudinal tracking so IT leaders can validate their investments in SaaS Management and demonstrate progress to stakeholders throughout the organization.
The new workflow capabilities include automated license reviews, secure employee offboarding, and simplified access reviews.
And the user interface now has a redesigned navigation menu for a more intuitive management experience. The intent is to streamline access to core functionality around access, apps, licenses, and security.
Zyxel Networks’ USG FLEX H Series Firewalls Now Provide Unified Cloud and On-Premises Security
Network provider Zyxel Networks upgraded its USG FLEX H series firewalls to combine both cloud and on-premises network security into a single seamless solution for SMBs and MSPs.
The USG FLEX H series firewalls incorporate Smart Sync to provide synchronized security policies, network objects, and high availability settings across multiple devices. Whether managed via Nebula or directly on the device interface, all settings are synchronized.
In addition, the USG FLEX H series hardware-only firewalls now come equipped with Zyxel Networks’ new Entry Defense Pack (EDP) license. The license includes Reputation Filter, SecuReporter analytics, and Priority Support. USG FLEX H Bundle models come equipped with complete network security Gold Security Pack, unlocking all security features the product is capable of, including sandboxing, ransomware protection, content web filtering, and more.
Zyxel USG FLEX H Series Security Firewalls are available through D&H, IngramMicro, TD Synnex, Target, and Wav distributors; Zyxel Authorized VARs and MSPs; and Amazon and the Zyxel Store.
People
ConnectWise appointed Prakash Talreja as EVP of engineering and Russell Humphries as EVP of product management. Talreja was previously VP of engineering at Mimecast, and before that, he was a distinguished engineer at Sophos. Humphries, who will be overseeing ConnectWise’s security and data protection portfolios, is the former VP of product at Sophos … Barracuda Networks appointed Ketan Tailor as chief customer officer. Previously, Tailor served as vice president of global support at Ping Identity …
… New board members elected to the Global Technology Industry Association (GTIA) membership community (formerly the CompTIA community) are Carrie Green, senior vice president of operations, Alt-Tech; Peter Melby, CEO, New Charter Technologies; and Kimberly Penn, president, Webtropolis. In addition, Scott Barlow, chief evangelist and global head of community at Sophos, was elected as the new chairman. Quy Nguyen, founder and CEO, Allyance Communications, and Rob Rae, corporate vice president of communities and ecosystem, Pax8, were elected as vice chairs.
Partnerships & Integrations
ESET Integrates with the Kaseya VSA X RMM
Global cybersecurity provider ESET launched a new integration of its ESET Endpoint product with the Kaseya VSA X RMM.
The new integration enables MSPs to deploy and manage ESET Endpoint products directly from within the Kaseya VSA X interface. And with support for additional workflows, MSPs can set up automatic actions for common scenarios. For instance, a workflow can be used to automatically deploy ESET to a freshly provisioned machine. Or, a workflow could be configured to provide a notification in case a threat is detected on an endpoint.
Other key features include one-click or automated deployment of ESET Endpoint products, monitoring of endpoint health (product, version, protection status), and on-demand tasks such as scanning and activation.
“We’ve been working with MSPs for a very long time,” said Rob Jones, global channel business developer at ESET, in a press statement. “With the features provided through our new integration with Kaseya VSA X software, MSP administrators will unlock extensive benefits, such as simpler workflows, easier monitoring, as well as enhanced time savings. We know what MSPs need, and with this integration, we are directly addressing multiple pain points to make their businesses more efficient.” (See 3 Things MSPs May Not Know About ESET.)
Version 1.0 of this integration will support Windows endpoints that are running ESET Endpoint Antivirus, Endpoint Security, or Server Security. The vendor says to expect more integrations in the future.
By the Numbers
Only Half of Ransomware Victims That Pay Up Get Their Data Back
Here’s a sobering finding: Only half (54%) of organizations that pay ransom to cybercriminals actually recover their data, down from 73% two years ago. That’s according to the 2025 Cyberthreat Defense Report from CyberEdge Group, which surveyed 1,200 IT security professionals across 17 countries and 19 industries.
It’s not all bad news though. The research finds cybercriminals are attacking fewer organizations with ransomware, declining from a peak of 73% of organizations two years ago to 63% this year. Only 41% of victimized organizations chose to pay ransomware in 2024—down from 63% three years ago.
“Organizations are finally wising up. They’re investing in resilience, improving backups, and refusing to reward cybercriminals,” said Steve Piper, founder and CEO of CyberEdge Group, in a press statement. “But for those still tempted to pay, this year’s results are a wake-up call: nearly half who paid got nothing in return. It’s like handing over a bag of cash and watching the crooks vanish.”
Additional Cybersecurity Insights on Hot Tech and AI
Other key findings from the report include:
- More than 4 in 5 security professionals (84%) prefer security tools powered by AI.
- 82% of organizations experienced successful cyberattacks in 2024—but only 64% expect the same this year.
- Low security awareness among employees tops the list of barriers and challenges for IT security teams.
- Mobile devices, industrial control systems, IoT devices, and containers (e.g., Docker, Kubernetes) are the most difficult IT assets to defend.
- 98 percent of organizations plan to strengthen their identity security postures this year, with detecting and responding to identity-related threats at the top of the list.
- 9 in 10 organizations outsource to MSSPs, with managed detection and response (MDR) at the top of the list.
The report also identified hot tech organizations plan to buy this year: next-gen firewalls, deception technology (endpoint security), bot management (application and data security), and advanced security analytics.
Free Offer for MSPs – Act Now Before It’s Too Late!
TMT’s Annual IT Sales & Marketing Boot Camp (April 22–24) isn’t just another “IT conference.” This is where MSPs go to blow past revenue ceilings— fast. The MSP Success team has some free virtual passes to give out—but they’re almost gone. Grab your FREE virtual ticket now before it’s too late!
Here’s what you get when you grab a FREE virtual pass:
- 70+ Business-Building Sessions: Learn from over 50 expert speakers and 20+ peer-led sessions sharing proven strategies for lead generation, client acquisition, and profitability.
- Hands-On Workshops: Participate in interactive sessions where you’ll implement AI-driven marketing tactics, refine your service offerings, and develop actionable plans to drive immediate results.
- Real-World Success Stories: Hear from fellow MSPs who have added six figures to their revenue in just 12 weeks by applying the techniques taught at Boot Camp.
And you can join from anywhere — no travel needed. Get your FREE virtual ticket now.
