In this episode of Beyond the Horizon, hosts Hilda Colon and Will Ledesma unpack the latest findings from the State of the SOC report. Drawing on decades of frontline cybersecurity experience, they explore the evolving threat landscape—from the unrelenting rise of ransomware to the growing complexity of cloud-based attacks. The conversation dives deep into the data: 500,000 alerts in just three months, 83,000 escalations, and a staggering 8-minute breakout time for some threats.

They also examine the human side of cybersecurity, and how emotional responses, fear-based tactics, and organizational inertia can undermine even the best defenses. The hosts share real-world war stories, including a recent “art of fear” attack that weaponized open-source intelligence to trigger panic without breaching a single system.

AI’s role in the SOC is front and center, with insights into how automation is accelerating detection, reducing analyst fatigue, and reshaping the balance between human judgment and machine speed. Whether you're a CISO, analyst, or just cyber-curious, this episode offers a sharp, honest look at what’s changing—and what’s coming next—in the world of security operations.

Key Talking Points

• Key findings from the 2025 State of the SOC report
• Ransomware remains dominant, with 2,684 cases in 3 months
• Cloud attacks now make up 44% of threats—up from 30% last year
• The rise of “fear-based” attacks using fake screenshots and OSINT
• AI’s role in accelerating detection and reducing analyst burnout
• The “Layer 8” problem: human resistance to disruption
• Hybrid environments and the risks of misaligned identity controls
• Zero trust: powerful in theory, difficult in practice
• SOC automation sweet spot: 70% AI, 30% human
• Real-world story: AI found 3 more IOCs in seconds vs. 60 minutes manually

Want the full picture?
The insights shared in this episode are just the beginning. Dive deeper into the data, trends, and expert analysis shaping the future of cybersecurity in the full 2025 State of the SOC Report. Whether you're leading a security team or just trying to stay ahead of the curve, this report is your essential guide to what’s happening inside today’s Security Operations Centers. Click here to download

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

After 15 years of development and delays, CMMC has transitioned from regulatory uncertainty to enforceable reality. This comprehensive compliance framework now carries the full weight of federal law, creating both significant challenges and substantial opportunities for organizations in the defense supply chain.

The numbers tell a compelling story: 80,000 companies need certification with only 337 qualified assessors available to handle the workload. Real assessments are underway, producing mixed results as companies navigate the rigorous requirements. While some organizations are discovering that compliance costs exceed their contract values, others are leveraging CMMC mastery to command premium rates and establish strong competitive positions.

In this episode of the Beyond The Horizon podcast, Lewis Pope and Mark Pardee provide essential insights into this transformation, examining real-world scenarios, the precision required in technical assessments, and why MSPs now shoulder responsibility for 50-60% of CMMC controls. Whether you're an MSP supporting defense contractors or a company directly involved in federal contracting, understanding this shift is crucial for strategic planning.

Key Areas Covered

• Understanding CMMC's Evolution
• Strategic Implications for Businesses and IT Service Providers
• Requirements and Implementation
• Making Strategic Decisions

Why This Episode Matters

This conversation provides critical insights for navigating one of the most significant regulatory changes in federal contracting. With implementation timelines accelerating, organizations need clear guidance on compliance requirements, strategic options, and business implications.

For MSPs, CMMC represents a fundamental shift in client relationships and service delivery models. Those who understand and adapt to these requirements early will be positioned to capture significant market opportunities. For defense contractors, compliance is becoming a competitive differentiator that affects contract eligibility and business viability.

The episode offers practical frameworks for decision-making, real-world examples of implementation challenges, and insights into the evolving compliance landscape that affects hundreds of thousands of organizations.

Download CMMC: A Guide to the What, When, Why, and How (https://www.n-able.com/resources/cmmc-a-guide-to-the-what-when-why-and-how) – a comprehensive resource for understanding CMMC requirements and building your compliance strategy. Whether you're just beginning to explore CMMC or refining your implementation approach, this guide provides the foundation for informed decision-making.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this episode of the Beyond the Horizon Podcast, Pete Roythorne is joined by N-able’s Sales and Marketing Head Nerd Stefanie Hammond to explore some of the key challenges MSPs are facing today, how these differ across company sizes, and what strategies are proving most effective for growth.

Stefanie brings valuable insight into how operational maturity impacts everything from sales and staffing to go-to-market strategies and cybersecurity offerings. The episode dives deep into how small, medium, and large MSPs are adapting — and what could be holding some back.

Key Topics Covered:

• Top Business Challenges
• Growth Mindset vs. Lifestyle MSPs
• Revenue Bands Breakdown
• Go-To-Market Models
• Cybersecurity Trends
• The Role of Vendors
• Peer Groups as a Growth Accelerator

Stay ahead of the curve in the MSP world — subscribe to Beyond the Horizons on your favorite podcast platform and never miss an episode!

N-able also produces Now That's It: Stories of MSP Success. This Podcast explores stories of how leading MSPs and other Channel leaders built their businesses, and how they overcame the challenges they faced to get to where they are today. Inspiring, educational, and often heartfelt this is a must for anyone looking to build their own business. You can listen to Now That's It on your favourite streaming service or watch it on YouTube.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this episode of the Beyond the Horizon podcast, Pete Roythorne sits down with Nicole Reineke, Senior Director of AI Strategy at N-able, to explore the fast-changing world of AI and its impact on managed service providers (MSPs). From the weaponization of AI in cybersecurity to the critical role of data governance and ethical compliance, this conversation delves deep into both the potential and peril of emerging AI technologies.

Nicole brings a wealth of experience and insight, breaking down how MSPs can better prepare for the future of AI by adopting responsible governance frameworks, understanding vendor responsibilities, and embracing AI tools that are rapidly becoming essential to staying competitive. Whether you're just starting your AI journey or looking to scale responsibly, this episode is packed with actionable insights and thoughtful commentary.

Episode Summary:
Pete and Nicole discuss:

• How AI is being weaponized to identify misconfigurations and vulnerabilities in IT infrastructure.
• The growing responsibility of vendors in embedding safe, ethical AI practices into their platforms.
• Insights from the MSP Horizons Report on how partners are adapting to AI governance, oversight, and ethical compliance.
• Why scripting with AI is getting safer—and how different AI models are starting to specialize in specific domains.
• The future of personalized AI assistants, and how MSPs of all sizes can begin building AI-driven workflows.
• Real red flags the industry should be paying attention to in order to avoid falling behind.
• Practical tools and resources MSPs can use today to implement responsible AI.

Key Takeaways:

• AI Governance Is No Longer Optional: MSPs and vendors alike must take an active role in implementing governance frameworks to meet compliance and ethical standards.
• Vendors Are Central to AI Adoption: Most MSPs rely on vendor-integrated AI solutions—placing the burden of responsibility and innovation on technology providers.
• Specialization in AI Models: Different platforms (e.g., Claude, ChatGPT) are proving to excel in different areas, making a multi-model strategy increasingly relevant.
• Weaponized AI in Cybersecurity: Threat actors are leveraging AI to find and exploit vulnerabilities faster than ever, underscoring the need for proactive defense.

Recommended Resources from Nicole:

• Top AI newsletters, podcasts, and thought leaders she follows.
• Tools and frameworks that help MSPs experiment safely with AI—no massive budget required.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this special edition of Beyond the Horizon podcast, head security expert Lewis Pope takes a deep dive into recent high-profile cyberattacks in the UK — particularly those affecting Co-op and M&S. He analyzes what happened, who's behind the incidents, and what businesses can learn from these attacks to bolster their own cyber resilience.

Key Topics Covered:

• Rapid Incident Response:
  Insights into how swiftly Co-op reacted, with prepared public statements almost immediately after the breach.
• The M&S Cyberattack:
  Discussion on whether exploited vulnerabilities were previously known and patchable.
• Ransomware Groups in Focus:
  In-depth exploration of DragonForce and the Scattered Spider group — their tactics, trends, and what makes them notable.
• Lessons for Business Leaders:
  Critical takeaways for organizations on preparedness, patching, response protocols, and interdepartmental coordination (e.g., involving HR in resilience planning).
• Wider Resilience Threats:
  Exploration of physical infrastructure vulnerabilities like undersea cable threats and recent power outages in Europe, and how freak weather and climate shifts intersect with cybersecurity.

Lewis emphasizes that resilience isn’t just a technical issue—it’s an organizational one, requiring involvement from abroad range of departments including HR, facilities, IT, and executive leadership. Cybersecurity today is about more than just prevention. It’s about response readiness, cross-functional resilience, and understanding the expanding threat landscape—both digital and physical.

N-able also produces Now That's It: Stories of MSP Success. This Podcast explores stories of how leading MSPs and other Channel leaders built their businesses, and how they overcame the challenges they faced to get to where they are today. Inspiring, educational, and often heartfelt this is a must for anyone looking to build their own business. You can listen to Now That's It on your favourite streaming service or watch it on YouTube.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this week’s Beyond the Horizons podcast, N-able’s VP of Partner Experience, David Weeks, explores how go-to-market strategies are shifting for Managed Service Providers MSPs. As MSPs grow past the $10 million revenue mark, many are embracing white-labeling and third-party services to scale faster and meet client demands with specialized expertise. David outlines the critical differences between co-managed and co-partnered service models and explains how MSPs can strategically evolve their business by forming deeper partnerships with clients — even earning seats at board meetings.

He discusses the changing mindset required to overcome hesitation toward outsourcing key services and emphasizes the importance of building ecosystems through partnerships rather than trying to do everything in-house. The conversation also touches on market maturity trends globally, post-COVID shifts in MSP-client relationships, and how co-managed/co-partnering strategies are influencing higher valuations from private equity firms.

David leaves listeners with a powerful reminder: Know where you fit in the customer's strategy and focus on being a true business consultant, not just a technology vendor.

Key Topics Discussed:

• White-label and third-party service models for MSPs
• Co-managed vs. co-partnered service structures
• Overcoming fear of losing control through outsourcing
• Building stronger revenue streams via strategic partnerships
• Why MSPs over $10M are more aggressive with third-party augmentation
• The impact of COVID-19 on customer demand and market evolution
• How ecosystem thinking drives growth and opportunity
• Global differences in adoption: U.S., Europe, Nordics, South Africa
• Increased private equity interest based on co-managed/co-partnering contracts
• Why MSPs must evolve from technical vendors to strategic advisors

N-able also produces Now That's It: Stories of MSP Success. This Podcast explores stories of how leading MSPs and other Channel leaders built their businesses, and how they overcame the challenges they faced to get to where they are today. Inspiring, educational, and often heartfelt this is a must for anyone looking to build their own business. You can listen to Now That's It on your favourite streaming service or watch it on YouTube.

https://www.n-able.com

Connect with N-able: Facebook: https://www.facebook.com/NableMSP/

LinkedIn: https://www.linkedin.com/company/n-able

Twitter - https://twitter.com/Nable

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this month’s cybersecurity news breakdown, Head Security Nerd Lewis Pope offers a critical overview of current threat activity, nation-state actor updates, and essential guidance for IT professionals and MSPs. This episode also includes a comprehensive look at March’s Microsoft Patch Tuesday and highlights several vulnerabilities and advisories that demand immediate attention.

In This Podcast, You Will Learn:

• How Silk Typhoon is shifting to target cloud environments and MSP supply chains
• Why low-tech attacks like QR-code-based mail extortion are bypassing traditional controls
• The security risks of VMware CVEs and VM-to-host escape exploits
• The importance of monitoring for “Living off the Land” remote tools used in ransomware campaigns
• Why old CVEs from as far back as 2018 are still active—and how poor patching practices allow it
• What "Pastejacking" is and why it's now a rising threat vector in user-targeted attacks
• The details and implications of March's Patch Tuesday, including 6 zero-day vulnerabilities and 137 deployment packages
• The risks of running unsupported Windows OS versions and how they accumulate unpatched vulnerabilities over time

Key Microsoft Patch Tuesday Highlights for March 2025 (16:24):

• 59 vulnerabilities addressed (56 new), including:
  
  • 6 Zero-days under active exploitation
  • 7 Critical vulnerabilities
• Emphasis on patching important-rated zero-days, not just "critical" scores
• 1218 deployment combinations needed—highlighting the complexity of enterprise patching
• Important fixes for:
  • USB printer issues on Windows 10/11
  • CVE-2025-24983: Win32k EoP vuln on older systems
  • Windows Cryptographic Services bypass (CVE-2024-3098)
  • Extended impact of CVE-2024-49116 to more Windows Server versions
• Windows Server 2022 patch may hang at 100% for extended periods—monitor closely

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this behind-the-scenes conversation from Empower 2025 in Berlin, your hosts catch up with Stefan to unpack what's new and what’s next for cloud-based data protection, automation, and AI in the MSP space. From executive summary reports and billing APIs to Google Workspace backup and AI-powered recovery assurance, this episode is packed with insights for MSPs aiming to drive efficiency, reduce risk, and scale smarter.

Whether you're navigating cloud migrations, looking for ways to simplify invoicing, or just curious about the future of SaaS protection — this quick but impactful episode has you covered.

What You'll Learn:

• Why automation and efficiency are top priorities for MSPs globally
• How new billing APIs in Cove Data Protection are saving technician time and integrating with PSA tools like Halo & Roost
• The rise of SaaS backups – with Google Workspace and Unitrends on the roadmap
• Why cyber resilience now means more than just backups: anomaly detection, honeypots, config monitoring
• How AI is improving recovery accuracy — without writing your checks for you
• A sneak peek at hosted recovery and what it means for DRaaS in 2025

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com