Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Built for MSPs: Is Your Security Ready for Today's Threats?

Managed service providers are under more pressure than ever—protecting multiple clients, managing growing toolsets, and responding to increasingly sophisticated cyber threats. But fragmented solutions, alert fatigue, and limited visibility can slow you down and impact the service your clients rely on. Today’s MSPs need more than just more tools.

Zero Trust According to the NSA: From Initial Access to Continuous Control

We’ve been talking about zero trust for years, and for good reasons. The evolution of threats and the growing sophistication of attacks continue to underscore the need for an approach based on continuous validation, leaving behind the implicit trust that long defined traditional security.

Project Glasswing - The 443 Podcast - Episode 366

This week on the podcast, we discuss Anthropic's Project Glasswing and what the Claude Mythos announcement means to cybersecurity. After that, we cover FrostArmada, a campaign from a Russian GRU-backed threat actor that has compromised tens of thousands of home networking routers. Finally we end with a chat about Google Chrome 146's new feature to protect against session hijacking.

WatchGuard and Halo Partner to Simplify MSP Security Operations

WatchGuard Technologies has announced a new partnership with HaloPSA to help MSPs streamline security operations from alert to invoice. By integrating WatchGuard Cloud directly into HaloPSA, MSPs can automate ticketing, simplify provisioning, and improve billing accuracy—all within a single platform. The integration reduces manual effort, accelerates response times, and helps partners scale more efficiently while delivering stronger security services.

Why Multi-Factor Authentication (MFA) Is No Longer Optional

Passwords are still necessary, but they are no longer sufficient. Using long, unique, and hard-to-guess passphrases remains best practice. The problem is what happens when one of those passwords falls into the wrong hands: the system doesn’t detect an intrusion—it simply sees a legitimate login. From that point on, the attacker moves through the environment like any other user.

Discover Your Network's Blind Spots Before It's Too Late

Advanced threats rarely break into infrastructure in obvious ways. In many cases, they remain hidden for months, exploiting blind spots created by unmanaged personal devices (BYOD), applications adopted without the IT department’s oversight (shadow IT), unauthorized access points, or compromised devices operating as part of botnets. As networks evolve into hybrid environments and most traffic is encrypted, the context becomes fragmented and the attack surface expands.

Claude Code Accidently Goes Open-Source - The 443 Podcast - Episode 365

This week on the podcast, we cover the accidental Claude Code source code leak and what it means for users and the wider ecosystem. After that, we discuss the Axios supply chain compromise impacting users of a JavaScript library with over 100 million weekly downloads. We end with our thoughts on Browser Gate, the name given to allegations that Microsoft is illegally harvesting LinkedIn customer data for a competitive advantage.