Immediate, Actionable Threat Detection: How United Systems and Software Elevated Security With Datto EDR and Kaseya 365 Endpoint
Overview
A leading managed service provider (MSP) faced growing challenges in securing its client environments, particularly with the limitations of its existing Managed Endpoint Detection and Response (EDR) vendor. After transitioning to Kaseya 365 Endpoint, the MSP experienced transformative results.
Initially cautious about adopting Datto security solutions, the MSP quickly recognized their advanced capabilities. Datto EDR and antivirus (AV) demonstrated immediate threat detection, uncovering numerous threats that their previous vendor had missed. This exceptional performance solidified the MSP’s trust in their comprehensive security strategy.
The transition to Kaseya 365 Endpoint empowered the MSP with actionable insights, enabling them to proactively address threats their previous managed EDR solution missed.
This case highlights how cutting-edge solutions in Kaseya 365 Endpoint can redefine security standards for MSPs while saving them significant costs.
About
Established in 1977 and headquartered in Benton, Kentucky, United Systems and Software has grown from providing custom software solutions for utilities and local governments to becoming a leading provider of managed IT and networking services.
With a SOC 2-certified team of skilled professionals, United Systems and Software delivers proactive monitoring and maintenance of critical technology solutions, ensuring their clients’ IT systems remain secure, reliable and up to date.
As a trusted partner in IT management, United Systems and Software leverages Kaseya’s advanced ecosystem, including Kaseya 365 Endpoint, Datto EDR and AV, to fortify client infrastructure. By combining these industry-leading tools, the MSP ensures seamless network performance and robust security for its clients’ PCs, servers and networks.
“Datto EDR is like a boa constrictor — nothing is getting past it unless you allow it.” Corey MasonNetwork Services Manager
Challenges
United Systems and Software initially adopted Kaseya 365 Endpoint as a cost-effective and comprehensive solution, considering whether to extend its implementation to include Datto EDR and AV. The decision stemmed from interest in Datto EDR and AV along with some dissatisfaction with their existing Managed EDR vendor, which failed to deliver on critical security needs, ultimately exposing the company to significant risk in the past.
The shortcomings of the previous solution became evident during a ransomware incident that severely impacted one of its clients’ operations. The managed EDR vendor’s platform was unable to detect stale agents which left its client’s endpoints vulnerable. One stale agent particularly enabled a prolonged ransomware attack that could have been avoided with a more integrated and comprehensive solution.
“It turned out that the agent on the machine was stale, but there was no dashboard or notification to alert us that it needed an update. Without a system to detect stale agents, we had no way of knowing if the scans were running at all. The simple truth? They weren’t.” — Darren Duncan, vCIO
For United Systems and Software, managing over 1,500 endpoints across various clients, the limitations and lack of integrations of their previous security solution enabled the ransomware attack to happen. The lack of reliable threat detection and preventive measures not only jeopardized their customers’ networks but also posed a severe threat to the MSP’s reputation and profitability.
“Our account manager started talking to us about Datto EDR. Obviously we were skeptical, but at the same time, I knew that I had to do something.” Darren DuncanvCIO
Solution
When deploying Kaseya 365 Endpoint, United Systems and Software decided to test Datto EDR and AV to see if they could replace their current vendor.
A key feature of Kaseya 365 Endpoint for them was its ability to provide consistent visibility into agent health through one of many automations between Datto RMM and Datto EDR. Thus, ensuring that endpoints were online and functioning correctly. This proactive monitoring alleviated one of the critical gaps in their prior managed EDR solution — undetected stale agents.
During the initial deployment, Datto EDR revealed 185 alerts, which were initially dismissed as potential noise or false positives. However, upon deeper investigation, the vast majority of these alerts were found to be genuine threats that their previous managed EDR solution had completely missed. Datto EDR’s “archive scanning” played a crucial role in this discovery. By analyzing past endpoint activity upon installation, it scans for suspicious processes, files and behaviors indicative of existing infections, uncovering threats that would have otherwise gone unnoticed.
Although United Systems and Software had approached the deployment of Datto EDR and Datto AV with skepticism, they quickly realized the solutions were not only adequate but exceeded expectations replacing their previous vendor entirely. The effectiveness of Datto EDR in identifying and addressing overlooked threats convinced the MSP to accelerate its deployment across its ecosystem.
“We were never expecting Datto EDR and Datto AV to be as good as it is from day one.” — Corey Mason, Manager of Network Services
“We thought the initial 185 alerts were false positives, but it turned out they were real, actionable threats.” Corey MasonManager of Network Services
Results
The deployment of Datto EDR and Datto AV transformed United Systems and Software’s approach to endpoint protection and cybersecurity. The results were both immediate and far-reaching, reshaping their security posture and operational efficiency.
Immediate detection and remediation
The transition to Datto solutions revealed previously undetected threats, including dormant malware like Cryptos and Emotet, within hours of deployment. These threats had existed undetected potentially for years, posing significant risks to client environments. Datto’s advanced detection and remediation capabilities addressed threats highlighted in the initial 185 alerts — threats the previous Managed EDR vendor had completely missed.
“With Datto EDR, we finally had greater visibility into what was happening on our endpoints.” — Corey Mason
Cost and operational efficiencies
By consolidating their tools under Kaseya 365 Endpoint, United Systems and Software streamlined workflows and reduced complexity. This shift not only delivered stronger endpoint protection but also resulted in significant per-endpoint cost reductions. The MSP benefited from more comprehensive protection without increasing costs, further bolstering its ability to detect and respond to lurking threats.
Looking ahead
Building on the success of their transition to Datto EDR and Datto AV, United Systems and Software is looking to scale its security operations even further within the Kaseya ecosystem. With their confidence in Kaseya 365 Endpoint firmly established, the MSP is committed to leveraging Kaseya solutions as the backbone of their security strategy.
As part of their forward-thinking approach, United Systems and Software has also expanded its adoption of Kaseya 365 User to prevent, respond to and recover from threats targeting users.
By integrating Kaseya 365 Endpoint and User into their ecosystem, the MSP aims to provide even more comprehensive visibility and security across both users and endpoints.
“The solutions are seamlessly integrated, saving me about 25 minutes every morning by allowing me to access everything in one place instead of juggling 14 different tools. The products are straightforward to deploy and incredibly user-friendly. Your customer support has been outstanding — whenever we’ve had a question, Brian has been quick to get us on the phone and provide the help we need” Darren DuncanvCIO
