Cyberattacks against U.S. government employees surged by 85% during the recent government shutdown, with projections estimating over 555 million attacks by the end of November 2025. These attacks, characterized as targeted digital assaults rather than generic phishing attempts, exploit vulnerabilities during periods of financial stress, particularly affecting essential employees in agencies like the Department of Veterans Affairs and the Department of Justice. Experts warn that the implications of these cyber threats extend beyond immediate breaches, potentially undermining recruitment and trust in government institutions.

In a related development, the Federal Communications Commission (FCC) voted to remove several cybersecurity regulations established after breaches by Chinese hackers targeting major telecommunications companies. This decision, made along party lines, reverses requirements for telecoms to enhance cybersecurity measures and submit annual risk management certifications. FCC Chairman Brendan Carr argued that voluntary efforts from carriers would be more effective, despite concerns from Democratic lawmakers about increased public vulnerability. Additionally, the U.S. Securities and Exchange Commission dismissed its case against SolarWinds Corporation, which had been accused of failing to disclose vulnerabilities related to the 2020 Sunburst attack.

The episode also highlights the growing complexity in the technology landscape, with vendors rolling out new identity tools and autonomous agents that increase operational challenges for Managed Service Providers (MSPs). OpenAI introduced group chats in ChatGPT, enhancing collaborative capabilities, while RSA launched RSA ID Plus for Microsoft, aimed at improving security in regulated sectors. TeamViewer unveiled TIA, an intelligent agent for autonomous IT support, and Sophos integrated its services with Microsoft Security Suite, further complicating the identity management landscape.

For MSPs and IT service leaders, the key takeaway is the need to establish a clear identity baseline and governance model amidst a rapidly evolving threat landscape and regulatory environment. As cyber threats become more targeted and regulations loosen, MSPs must proactively define their security standards and operational strategies. The increasing fragmentation of identity solutions and the rise of autonomous agents necessitate a focus on risk management and operational clarity to maintain client trust and ensure effective service delivery.

Three things to know today

00:00 Targeted Federal Cyberattacks Surge as FCC Rolls Back Telecom Rules and SEC Ends SolarWinds Case, Leaving MSPs to Fill the Governance Gap

05:42 Identity Wars, Agent Sprawl, and Rising Collaboration Expectations Put New Pressure on MSP Governance

10:42 AI Isn’t Just a Tool Anymore — It’s Reshaping MSPs, Risk Strategy, and the Future of Agent Marketplaces

This is the Business of Tech.   

Supported by:  https://saasalerts.com/mspradio/

Support the vendors who support the show:

👉 https://businessof.tech/sponsors/

Get exclusive access to investigative reports, vendor analysis, leadership briefings, and more.

👉 https://businessof.tech/plus

Want the show on your favorite podcast app or prefer the written versions of each story?

📲 https://www.businessof.tech/subscribe

Looking for the links from today’s stories?

Every episode script — with full source links — is posted at:

🌐 https://www.businessof.tech

Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:

💬 https://www.podmatch.com/hostdetailpreview/businessoftech

LinkedIn: https://www.linkedin.com/company/28908079

YouTube: https://youtube.com/mspradio

Bluesky: https://bsky.app/profile/businessof.tech

Instagram: https://www.instagram.com/mspradio

TikTok: https://www.tiktok.com/@businessoftech

Facebook: https://www.facebook.com/mspradionews

Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.