Smaller enhancements introduced today affect ID Agent’s BullPhish security awareness training solution and the email security solution Kaseya acquired with Graphus last August. The BullPhish update lets MSPs supplement the system’s generic fake emails with customized messages tailored to a specific client’s industry and business processes.
The new Graphus feature uses behavior-based technology to spot business email compromise messages sent to one employee via a second employee’s compromised account. Email security solutions that route messages through an external gateway are typically powerless against such exploits, Puglia notes, because the attack never exits the customer’s Office 365 or Google Workspace tenant.
A further update announced today expands the capabilities of Kaseya’s compliance management tool for businesses subject to the federal government’s Cybersecurity Maturity Model Certification (CMMC) process. The new functionality adds support for the NIST 800-171 interim rule as well as level 3 assessments. The system already supported level 1 and 2 assessments.
The CMMC is designed to help contractors and subcontractors that serve the Department of Defense on weapons-related projects protect “controlled unclassified information.” According to Puglia, Kaseya is receiving mounting requests for help with CMMC from its partners. All 300,000 organizations that contribute to the design, development, production, and maintenance of weapon systems will be required to obtain the CMMC and clear a third-party audit by October 1, 2025.
A new integration for Kaseya Compliance Manager allows VSA users to send information directly to that product rather than input the same data in multiple places. A second new integration enables BMS users to get billing updates automatically after compliance scans.
In other updates announced today:
- The lineup of devices from Kaseya’s Unitrends unit now includes a high-speed BDR appliance called the Gen 9 MAX. Subscription pricing is available for the new system.
- The Network Glue network management solution can now discover and document Active Directory security groups. The new feature enables technicians to check Active Directory user permissions inside IT Glue instead of navigating to their Active Directory server.
- Users can now share documents in the MyGlue Help Center with select MyGlue accounts.
- IT Glue and MyGlue users can now segment off configuration, password, document, and flexible asset documentation that’s no longer needed but shouldn’t be deleted.
- IT Glue and GlueConnect users can now receive instant notifications every time a sensitive password is accessed or copied.
- Users of Network Glue and VSA can now view and filter agents on the network diagram by status, to see which ones are online or offline easily.