Beyond the Horizon: Future-Focused MSP Insights

In this episode, Stefanie Hammond, Head Sales and Marketing Nerd at N-able, and Jeff Nelson, Chief Marketing Officer at N-able, discuss the insights from the latest MSP Horizons, and its implications for Managed Service Providers (MSPs).

The 2025 MSP Horizons Report provides valuable insights and practical examples to help MSPs navigate the evolving landscape and achieve success. DOWNLOAD YOUR COPY HERE: https://www.n-able.com/resources/msp-horizons-report-2025

Stefanie and Jeff’s discussion looks at the following topics:

· Nearly half of the surveyed MSPs expect more than 20% growth in managed services revenue in 2025. The report identifies five mechanisms for growth: go-to-market strategies, mergers and acquisitions (M&A), new verticals, new channels, and new services.

· Cybersecurity is also highlighted as a significant growth area, with 90% of partners believing that substantial growth will come from cybersecurity over the next three years.

· MSPs are encouraged to lean into verticalization to address challenges and secure growth.

· Backup is emphasized as a key pillar of any good cybersecurity program, and MSPs should include backup as a requirement and ensure they have the right solution.

· Compliance is identified as a massive opportunity for MSPs. By offering compliance as a service and educating their clients, MSPs can differentiate themselves and provide added value.

· AI is also emerging as a growth lever, with some MSPs embracing AI to offer new services and improve their operations.

· The report notes a significant increase in MSPs moving into the co-managed space. Co-managed services offer redundancy and specialization, making them cost-effective and efficient.

· 90% of MSPs are considering making acquisitions over the next few years, seeing M&A as a way to achieve differentiation and growth.

· To avoid commoditization, MSPs should focus on best-of-breed tech stacks and differentiated services. Telling a compelling story and demonstrating value is crucial.

· MSPs can explore new channels by partnering with incident response companies, cybersecurity brokers, and industry-specific groups.

The 2025 MSP Horizons Report provides pragmatic insights to help MSPs build their businesses. It includes numbers and real-world stories to make the data actionable. MSPs can use the report to benchmark their business and reflect on necessary changes. The report features a mixture of larger and smaller MSPs from various regions, making it relevant to any MSP, regardless of their location.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this month’s cybersecurity news breakdown, Head Security Nerd Lewis Pope offers a critical overview of current threat activity, nation-state actor updates, and essential guidance for IT professionals and MSPs. This episode also includes a comprehensive look at March’s Microsoft Patch Tuesday and highlights several vulnerabilities and advisories that demand immediate attention.

In This Podcast, You Will Learn:

• How Silk Typhoon is shifting to target cloud environments and MSP supply chains
• Why low-tech attacks like QR-code-based mail extortion are bypassing traditional controls
• The security risks of VMware CVEs and VM-to-host escape exploits
• The importance of monitoring for “Living off the Land” remote tools used in ransomware campaigns
• Why old CVEs from as far back as 2018 are still active—and how poor patching practices allow it
• What "Pastejacking" is and why it's now a rising threat vector in user-targeted attacks
• The details and implications of March's Patch Tuesday, including 6 zero-day vulnerabilities and 137 deployment packages
• The risks of running unsupported Windows OS versions and how they accumulate unpatched vulnerabilities over time

Key Microsoft Patch Tuesday Highlights for March 2025 (16:24):

• 59 vulnerabilities addressed (56 new), including:
  
  • 6 Zero-days under active exploitation
  • 7 Critical vulnerabilities
• Emphasis on patching important-rated zero-days, not just "critical" scores
• 1218 deployment combinations needed—highlighting the complexity of enterprise patching
• Important fixes for:
  • USB printer issues on Windows 10/11
  • CVE-2025-24983: Win32k EoP vuln on older systems
  • Windows Cryptographic Services bypass (CVE-2024-3098)
  • Extended impact of CVE-2024-49116 to more Windows Server versions
• Windows Server 2022 patch may hang at 100% for extended periods—monitor closely

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this episode of the Beyond the Horizon podcast, Pete Roythorne sits down with Nicole Reineke, Senior Director of AI Strategy at N-able, to explore the fast-changing world of AI and its impact on managed service providers (MSPs). From the weaponization of AI in cybersecurity to the critical role of data governance and ethical compliance, this conversation delves deep into both the potential and peril of emerging AI technologies.

Nicole brings a wealth of experience and insight, breaking down how MSPs can better prepare for the future of AI by adopting responsible governance frameworks, understanding vendor responsibilities, and embracing AI tools that are rapidly becoming essential to staying competitive. Whether you're just starting your AI journey or looking to scale responsibly, this episode is packed with actionable insights and thoughtful commentary.

Episode Summary:
Pete and Nicole discuss:

• How AI is being weaponized to identify misconfigurations and vulnerabilities in IT infrastructure.
• The growing responsibility of vendors in embedding safe, ethical AI practices into their platforms.
• Insights from the MSP Horizons Report on how partners are adapting to AI governance, oversight, and ethical compliance.
• Why scripting with AI is getting safer—and how different AI models are starting to specialize in specific domains.
• The future of personalized AI assistants, and how MSPs of all sizes can begin building AI-driven workflows.
• Real red flags the industry should be paying attention to in order to avoid falling behind.
• Practical tools and resources MSPs can use today to implement responsible AI.

Key Takeaways:

• AI Governance Is No Longer Optional: MSPs and vendors alike must take an active role in implementing governance frameworks to meet compliance and ethical standards.
• Vendors Are Central to AI Adoption: Most MSPs rely on vendor-integrated AI solutions—placing the burden of responsibility and innovation on technology providers.
• Specialization in AI Models: Different platforms (e.g., Claude, ChatGPT) are proving to excel in different areas, making a multi-model strategy increasingly relevant.
• Weaponized AI in Cybersecurity: Threat actors are leveraging AI to find and exploit vulnerabilities faster than ever, underscoring the need for proactive defense.

Recommended Resources from Nicole:

• Top AI newsletters, podcasts, and thought leaders she follows.
• Tools and frameworks that help MSPs experiment safely with AI—no massive budget required.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

Explore the reasons behind the decline in global channel M&A activity in 2023 and the increasing number of buyers compared to sellers in this conversation with Matt Takhar, Business Development Director at N-able. Takhar also delves into the factors driving M&A, such as the need for strategic fit and expansion into new markets. The conversation highlights two key models for structuring MSP acquisitions: the centralized model, where the acquired MSP is consolidated into the buyer's brand, and the decentralized model, where the acquired MSP retains its own brand but receives support from the buyer. The pros and cons of each model are discussed, along with the importance of due diligence for both buyers and sellers.

Key Takeaways:

· There has been a decline in global channel M&A activity in the MSP industry in 2023, but there are still many buyers looking to acquire MSPs.

· MSPs are becoming more selective in their acquisitions, looking for strategic fit and specialization in certain industries or sectors.

· Two key models for structuring MSP acquisitions are the centralized model, where the acquired MSP is consolidated into the buyer's brand, and the decentralized model, where the acquired MSP retains its own brand but receives support from the buyer.

· Due diligence is crucial for both buyers and sellers in the M&A process to ensure a successful and mutually beneficial acquisition.

· The MSP industry is attracting a new breed of owners who are business-focused rather than purely technical, and there are also franchise models available for setting up MSPs.

· Sellers have the upper hand in the current market, with more buyers than sellers, and should take the time to find the right buyer and deal for their business.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this engaging episode of the Beyond the Horizon podcast, Jim Waggoner, VP of Product Management for Security at N-able, and Lewis Pope, Security Head Nerd at Enable, dive deep into the world of Ransomware as a Service (RaaS). They explore the commoditization of cybercrime, the challenges and opportunities for Managed Service Providers (MSPs), and the cutting-edge solutions available to combat these threats.

Key Topics Covered:

1. What is Ransomware as a Service (RaaS)?
   • Definition and explanation of RaaS.
   • How it lowers barriers for cybercriminals, enabling even non-technical actors to launch ransomware campaigns.
2. The Economics of RaaS
   • Entry costs and the profitability of RaaS for threat actors.
   • Comparison between the startup costs for cybercriminals and legitimate MSPs.
   • Why the asymmetry of costs and skills creates significant challenges for defenders.
3. Target Profiles and Attack Patterns:
   • How attackers cast wide nets and target vulnerabilities indiscriminately.
   • Examples of unexpected targets, including non-profits like food banks.
   • Regional patterns and why the U.S. remains a favorite target for ransomware campaigns.
4. Challenges for MSPs:
   • Skill gaps and operational challenges for MSPs trying to combat advanced threats.
   • The high cost of building in-house SOC capabilities.
   • Growing expectations from clients for integrated security services.
5. Opportunities for MSPs:
   
   • The shift toward incorporating Managed Security Service Provider (MSSP) capabilities.
   • Leveraging third-party tools like Enable's MDR for cost-effective, scalable solutions.
   • The importance of having risk management conversations with clients.
6. Real-World Success Stories:
   
   • How Enable's MDR helped a city in New Jersey recover and protect itself from repeated ransomware attacks.
   • The value of rapid detection and response in minimizing downtime and financial loss.
7. Actionable Steps for MSPs:
   
   • Engaging clients in honest risk management discussions.
   • Identifying and addressing gaps in their current security offerings.
   • Leveraging commoditized services like MDR to offer 24/7 protection without building in-house capabilities.
8. Future of Cybersecurity for MSPs:
   
   • The evolving threat landscape and how MSPs can adapt to remain competitive and secure.
   • The importance of continuous learning and partnering with vendors who offer advanced security tools.

#Cybersecurity #CyberThreats #CyberAwareness #Ransomware #RansomwareAsAService #RAAS #MDR #ManagedDetectionAndResponse #CyberSolutions #TechPodcast #BusinessSecurity #CybersecurityTips #TechInsights

#LearnCybersecurity #ITPro #TechEducation

Disclaimer: This po

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com