The Joint Cyber Defense Collaborative (JCDC) has announced the release of the JCDC RMM (remote monitoring and management) Cyber Defense Plan.
This plan, created in conjunction with the Computing Technology Industry Association (CompTIA) on behalf of the global managed service provider (MSP) community, aims to bolster cybersecurity measures and minimize supply chain risks for small to medium-sized critical infrastructure enterprises.
This will be achieved through cooperation with RMM vendors, MSPs, and managed security service providers (MSSPs), CompTIA said. Major RMM vendors in the MSP space have included ConnectWise, Kaseya, N-able, NinjaOne, Synchro, and others.
Wayne Selk, vice president, cybersecurity programs, CompTIA, and executive director of the CompTIA Information Sharing and Analysis Organization (ISAO), commented:
"It is important that the unique experiences and perspectives of MSPs and MSSPs are considered and addressed in the new RMM plan. These firms provide information technology and cybersecurity services to approximately 90 percent of U.S.-based small and medium-sized businesses, who themselves account for about half the nation's gross domestic product."
Malevolent RMM Software
The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Multi-State Information Sharing and Analysis Center (MS-ISAC) issued a joint advisory in January 2023 regarding the malevolent use of RMM software.
This advisory highlighted that cybercriminals used phishing emails to trigger the downloading of genuine RMM software. These criminals then exploited the software in a refund scam, accessing and misappropriating funds from victimized bank accounts.
The JCDC RMM Cyber Defense Plan revolves around two primary objectives:
- Enhancing collaboration across the RMM community for improved information dissemination, increased visibility, and to inspire innovative cybersecurity solutions.
- Heightening awareness of the risks associated with RMM infrastructure and promoting the importance of security best practices.
The United States Cybersecurity and Infrastructure Security Agency (CISA) established JCDC in August 2021 with the mandate of transforming traditional public-private partnerships into a real-time private-public operational collaboration.
Companies like N-able have already partnered with the group to offer an enhanced security product to MSPs and their customers.
The global outreach of CompTIA, especially within the cybersecurity domain, is vast.
MSPs from various nations are currently enrolled in the CompTIA Cybersecurity Trustmark program. This initiative provides them with a comprehensive roadmap to attain foundational cybersecurity protocols.