Ransomware distributors have started to target managed service providers (MSPs) in order to mass-infect all of their clients in a single attack. Multiple reports indicate that multiple MSPs have been hacked recently, which has led to hundreds, if not thousands, of clients being infected with GandCrab. The attackers are using a vulnerability in use to link two software products that are commonly used to manage their clients’ endpoints. The U.S. Department of Homeland Security issued an alert in October that cyber actors are targeting Managed Service Providers.
Source: https://www.bleepingcomputer.com/news/security/ransomware-attacks-target-msps-to-mass-infect-customers/