Key Channel Headlines: Malwarebytes Expands ThreatDown Portfolio, Kaseya Launches AI‑powered Workflows, and More

MSP Technology News Headlines

Malwarebytes expanding its ThreatDown portfolio leads this week’s headlines. But we have lots of other interesting technology news from all over the industry. From cyber attacks to product enhancements to telling industry reports, you’ll need to stay in the know. Ready for a quick rundown of this week’s MSP news and partner program updates? Scroll on down!

Malwarebytes Expands ThreatDown Portfolio with Email Security Module

Malwarebytes’ new email security offering — ThreatDown Email Security — is powered by IRONSCALES’ adaptive AI. It protects against phishing, BEC, credential theft, and other advanced email-based threats from within the ThreatDown ecosystem.

Key quote from the press release:

“The launch of ThreatDown Email Security in partnership with IRONSCALES marks a significant milestone in our mission to protect organizations with effective, easy‑to‑use cybersecurity solutions. By unifying endpoint and email protection in a single platform, IT teams can now detect, protect, and respond to both endpoint and email threats faster and with far less complexity.” — Marcin Kleczynski, founder and CEO, Malwarebytes

Kaseya Launches AI‑powered Workflows Within VSA 10

Kaseya introduced Cooper Copilot within VSA 10, an AI-driven workflow generator that allows technicians to describe desired outcomes in plain language and instantly build complete automation routines without scripting.

Key quote from the press release:

“Creating workflows with AI isn’t just easier; it’s significantly more effective. We’ve seen workflow success rates jump from 86% with traditional methods to over 96% using AI‑powered workflows. This is intelligent, adaptive execution that understands technician intent and delivers results with precision.” — Edgar Zacharjev, general manager of VSA, Kaseya

MSP Operations Manager Troy Waldrep Fatally Shot in Canton, MS

Troy Waldrep, 47, operations manager at EnvisionIT of MS, LLC, was shot and killed following an argument outside Camden Park Apartments in Canton, MS, on July 19. James Ross, 33, has been charged with murder and is in custody, according to Canton Police Chief Otha Brown.

Key facts from news reports:

• Waldrep was identified by local news station WLBT as the victim.
• Family members remembered him as a loving, community-minded person.
• The fatal shot was fired during a verbal altercation in the Camden Park complex parking area, striking Waldrep in the face. Charges against the suspect include murder, illegal firearm possession by a felon, and unauthorized shooting within city limits.
• Waldrep was employed in the MSP channel as operations manager at EnvisionIT of MS LLC. His passing underscores the often-unseen personal stories behind IT professionals who serve critical roles in their local communities.

Cynet: 2025 Managed Security Snapshot Warns MSPs Are Drowning in Complexity

Cynet’s latest research shows that while cybersecurity is a clear growth driver for MSPs, a tangle of tools and too little automation are stalling scalability and profits.

Key findings from the report:

• MSPs manage an average of 50 clients and 1,728 endpoints. Yet, just 8%–20% of staff focus on security.
• Most rely on four different security tools from separate vendors, creating costly inefficiencies.
• Half cite limited automation as the biggest barrier to growth.
• While 96% say security services improve client retention, only 6% feel well-positioned to scale them.

Darktrace Acquires Mira Security to Close Network Visibility Gaps

The deal will enhance encrypted traffic analysis, decryption, and next‑generation networking capabilities, especially for highly regulated industries.

Key quote from the press release:

“The acquisition of Mira Security is another building block in our strategy to develop best-in-class cybersecurity solutions and keep our customers safe through continuous innovation. Mira Security has already proven to be a valuable source of insight for our AI, helping us provide unparalleled detection and response capabilities at scale. By bringing the Mira Security team’s deep expertise into Darktrace, we will be able to accelerate innovation, deepen the capabilities of our market-leading Network product and unlock even greater security performance for our customers.” — Phil Pearson, chief strategy officer, Darktrace

Boom Collaboration Unveils ARC: Dual-host Conferencing Hub for BYOM and In‑room Flexibility

Boom Collaboration has launched the ARC, a dual-host bridge that enables seamless switching between in-room video conferencing systems and Bring Your Own Meeting (BYOM) setups. This positions it as a flexible solution for hybrid work environments.

Key quote from the press release:

“The ARC solves this dilemma in a magical way so [organizations] don’t have to sacrifice the investments already made but can have their cake and eat it by combining both options within the same ecosystem.” — Fredrik Hörnkvist, co-founder, Boom Collaboration

DomainTools Announces Predictive Threat Feeds to Enable Preemptive Exposure Management

DomainTools’ real‑time predictive threat feeds help security teams shift from reactive analysis to proactive risk mitigation. This leverages nearly full visibility into emerging domain-based threats.

Key quote from the press release:

“We are confident that Real-Time Feeds will transform our customers’ ability to achieve a proactive security posture … enabling significantly faster visibility into emerging threats compared to traditional threat intelligence.” — Dan White, principal product manager, DomainTools

Inforcer Raises $35M Series B to Deliver Microsoft Security and AI at Scale for MSPs

The funding will expand Inforcer’s AI-enabled multitenant Microsoft 365 management platform. MSPs can now deliver enterprise-grade security and AI capabilities to SMB clients.

Key quote from the press release:

“The world is turning its head to Microsoft as the answer to AI and security adoption in enterprise. Inforcer is helping bring these enterprise‑grade technologies to the SMB. … The Microsoft tenant is the new server for MSPs.” — Jamie Daum, co‑founder and CEO, Inforcer

Alvaka CEO Oli Thordarson Appointed to GTIA ISAO Advisory Group

Oli Thordarson

Thordarson joins the advisory board of the Global Technology Industry Association’s Information Sharing and Analysis Organization (ISAO). He will help guide threat intelligence and cybersecurity best practices across the MSP ecosystem.

Key quote from the press release:

“GTIA is an impressive organization that has consistently advocated for innovation, resilience and the success of the cybersecurity industry. I’m thrilled to join the Advisory Group and looking forward to working with an exceptional group of industry leaders. Our work will support the development of stronger cybersecurity standards that meet today’s threats, as well as help future-proof the IT environments businesses and communities rely on.” — Oli Thordarson, CEO, Alvaka

Forcepoint Report: Enterprise AI Usage Is Widespread and Shadow AI Controls Are Evolving

Forcepoint’s latest analysis of AI application access reveals key differences in how organizations of varying sizes are embracing or managing artificial intelligence. It offers insight into both adoption trends and risk mitigation strategies.

Key findings from the report include:

• Large Enterprises Lead Adoption: These organizations accessed nearly five times more AI apps weekly than medium-sized businesses, signaling broad integration of AI tools across departments.
• Midlevel Companies Tighten Controls: These organizations are actively blocking unapproved AI apps using security policies, showcasing a proactive approach to reducing Shadow AI risks.
• AI Usage Is Diverse: Forcepoint users interacted with over 1,400 distinct AI apps per week. They extend well beyond ChatGPT and Copilot into tools for coding, design, writing, and more.

Dashlane Revamps Partner Program with Points-based Model, Names 1st Channel Chief

Dashlane has introduced a points-based structure that rewards resellers not just for revenue but also for training, marketing engagement, and customer success. Plus, security industry veteran Tom Laffaye was appointed director of channel sales.

Key quote from the press release:

“Our new program structure ensures that all partners, regardless of size, can tap into the full resources and benefits available to them to maximize their success. We see tremendous potential in putting partners at the center of Dashlane’s growth as the global partner ecosystem continues to be crucial in helping businesses stay ahead of growing threats.” — Tom Laffaye, new director of channel sales, Dashlane

Huntress Uncovers New Crux Ransomware Variant with RDP-based Attack Vector

Huntress researchers identified a previously unreported ransomware strain known as Crux. It claims affiliation with the BlackByte ransomware family and shows a unique execution profile.

Key details from the Huntress blog include:

• First Public Disclosure: Crux is a new ransomware variant not previously documented in public threat intelligence reports.
• Initial Access via RDP: One suspected intrusion method involves Remote Desktop Protocol (RDP), though Huntress notes its visibility is limited.
• Distinct Execution Chain: After launch, the malware follows a recognizable process path — progressing through svchost.exe, cmd.exe, and bcdedit.exe — before initiating encryption.

Cynomi: vCISO Adoption Surges 300% as AI Cuts Workloads by 68%

Cynomi’s 2025 State of the vCISO Report highlights a dramatic increase in vCISO service adoption among MSPs and MSSPs. It also reveals that AI-powered platforms are delivering major efficiency gains across security and compliance operations.

Key findings from the report:

• Service Adoption Triple‑digit Growth: The share of service providers offering vCISO services jumped from 21% to 67%, a 319% year‑over‑year increase.
• AI Slashes vCISO Workload: Organizations report an average 68% reduction in manual tasks when integrating AI into vCISO workflows.
• Broad AI Adoption Ahead: 81% of vCISO providers already use AI or automation tools. Another 15% plan implementation within 12 months.
• Efficiency Gains Extend Beyond vCISO: Providers estimate AI tools reduce labor time by 58% across broader cybersecurity and compliance services.

Intel 471 Launches Guided Threat Hunts to Improve Outcomes

Intel 471 Guided Threat Hunts are a new capability within the company’s HUNTER platform. They are designed to empower threat hunters — particularly those in understaffed or less mature teams — to investigate complex threats more effectively using method-driven Pivot and Filter queries.

Key quote from the press release:

“Threat hunt teams are constantly tasked with sifting through large datasets or collecting data to support a hypothesis on a specific threat. This presents a challenge for organizations experiencing persistent shortages of seasoned threat hunters or skills gaps among available analysts.” — Jason Passwaters, CEO, Intel 471

Commvault Eyes Acquisition of Satori Cyber to Tighten Data and AI Security

The purchase of Satori Cyber, a company focused on securing structured data and AI pipelines, would deepen Commvault’s cyber resilience platform capabilities across hybrid and multicloud environments.

Key quote from the press release:

“As enterprises accelerate AI and modern data platform adoption, securing sensitive data across distributed environments grows increasingly complex. By integrating Satori’s real‑time, agentless controls and deep visibility into structured and AI training data, we’re extending our cyber resilience into the data layer, enabling secure data access, AI governance, and policy enforcement across platforms like Snowflake, Redshift and Databricks to reduce risk and drive compliant innovation.” — Rajiv Kottomtharayil, chief product officer, Commvault

GTIA Launches Global Leadership Committee to Strengthen Worldwide Member Collaboration

The Global Technology Industry Association (GTIA) has announced the formation of a Global Leadership Committee (GLC), composed of elected leaders from its various regional communities, advisory councils, and member groups. The committee will coordinate cross-functional strategy, unify engagement efforts, and ensure global alignment across GTIA’s initiatives.

Key quote from the press release:

“I want to thank all our member leaders for their commitment to GTIA and for their participation in this new committee. I am excited about the opportunity this presents to ideate strategies that will deliver more value for members around the world and develop benefits, programs, and resources that will underscore why GTIA is the must-belong-to unbiased community for anyone in the global IT channel.” — MJ Shoer, chief community officer, GTIA

MSP-Ignite Adds Experienced Leader to Support Growth of Member Programs

Independent peer community MSP-Ignite has welcomed Ryan O’Hara to its leadership team, bolstering its commitment to helping MSPs build stronger, more scalable businesses through operational focus and strategic execution.

Key quote from the announcement:

“MSPs are navigating rapid change, and the need for clarity and adaptability has never been greater. We exist to help MSPs build better businesses, and Ryan’s background strengthens our ability to support that work at scale without compromising depth or quality.” — Steve Alexander, founder, MSP-Ignite

Images: WLBT, Boom, Alvaka, Forcepoint, Dashlane, Huntress, Cynomi