r/MSSP

Hey everyone, I work at a small MSP and was talking with a guy from another MSP the other day. He mentioned they’ve been using an AI cybersecurity assistant from AI-Vault. From what he described, it uses AI to help manage cybersecurity tools, and since it has an integrated RMM, it can speed up incident response and offload a bunch of the repetitive work IT teams deal with.

Has anyone here heard of them or used it before? Curious if it’s actually good or just more AI hype.

**OPEN POST TO SEE IMAGE** I'm sharing early-stage intel on the ForGaite exploit for sale in a Russian Telegram group for $2500. This individual has sold these bypasses before; they get patched, he sells another, and around we go. This one is early stage BUT Flare is usually RIGHT on the money. We provide this protection to our MSP clients, but if you're particularly interested in how this flushes out or for more detail, I'll post an update, but I don't want to bother folks so enough thumbs up and I'll keep the group updated.

https://preview.redd.it/wewji9kbeg1h1.png?width=1276&format=png&auto=webp&s=e3d58598d98b593b4b11e9ca7ae471c459d540ca

Anyway, here's the detail.

I’m looking to acquire an MSP. My background is on security compliance (12+ years). A niche MSP like dental offices seems attractive in which a current MSP might not be offering HIPAA compliance services.
My question (or doubt) is. Maybe those dental offices are too small, they don’t care, they just sign any BAA template they see, and the market is not there?

Most vendor security assessments are still being handled through spreadsheets, long email chains, and expensive GRC platforms that are overkill for smaller teams.

CyberWorld built VendorGuard to simplify the process.

VendorGuard is a fully offline third-party risk assessment tool that helps businesses evaluate vendors in minutes instead of days.

Features include:
• Weighted vendor risk scoring
• Executive risk summaries
• Compliance & operational heat maps
• Prioritised remediation guidance
• PDF export
• White-label support

Runs entirely from a single HTML file with no cloud dependency and no data leaving the browser.

Built for MSPs, consultants, IT managers, and businesses that need a lightweight, professional vendor risk workflow without enterprise pricing.

Have any of you used patchmypc at any scale?
The pricing is very hard to beat, but I'm hesitant to use something I haven't heard of compared to tools like Automox and ManageEngine.
If you have used it at scale, I would very much like to hear your experience.

Use case: managed patch SKU for clients as a standalone product, not part of a larger stack.
Business: MSSP for MSPs working behind the scenes. We are usually full stack but want a standlone patch offering.