Then NCCIC has released Technical Alert 18-276B about Advanced Persistent Threat (APT) actors attempted to infiltrate the networks of global managed service providers (MSPs) in order to gain unauthorized access to the networks of their customers. MSPs provide remote management of customer IT and end-user systems, and the number of organizations using MSPs has grown significantly over recent years since these services allow customers to scale and support their networks at lower costs than financing these resources internally. But MSPs generally have direct and unrestricted access to their customers’ networks, significantly increasing a customer’s digital presence and creating a large attack surface for cyber criminals and nation-state actors. As noted by the Technical Alert, an APT’s infiltration into a victim organization’s network can lead to temporary or permanent loss of sensitive or proprietary information, disruption to regular operations, financial losses to restore systems and files, and potential harm to the organization’s reputation. The Technical Alert includes recommendations for how to address the tactics being utilized to perpetrate this activity, which include managing supply chain risk, employing appropriate network architecture restrictions, and adhering to best practices for password and permission management. NCCIC/US-CERT.