Deeptree, a US-based Managed Services Provider (MSP), leverages CrowdSec to enhance their security posture and their ability to protect their clients and infrastructure.
Deeptree, founded and led by CEO Peter House, is an MSP specializing in security-centric IT services. Based in Alaska, Deeptree has built a reputation for delivering exceptional value and stability to its customers. With an impressive 92% customer retention rate, Deeptree’s success lies in its commitment to proactive, relational service. Their mission is to ensure their clients’ environments are stable, secure, and predictable, enabling businesses to focus on their core operations without worrying about IT disruptions.
Deeptree serves a diverse range of industries, with a strong focus on healthcare and nonprofits, many of which are subject to HIPAA regulations. With a small but highly effective team of 13 employees, Deeptree manages over 50 firewalls and supports 44 clients, demonstrating their ability to deliver high-quality, personalized service at scale.
The challenges
As a security-focused MSP, Deeptree faces unique challenges in protecting their clients from increasingly sophisticated cyber threats.
Firewall targeted by nation-state actors
Firewalls, once considered a reliable line of defense, are now being actively targeted by nation-state actors and downstream criminal organizations. This has made it harder to rely solely on traditional Next-Generation Firewalls (NGFWs) for intrusion detection and prevention.
Phishing and credential harvesting
The rise of AI-powered phishing attacks has made it harder to detect malicious emails, as attackers now craft more fluent and convincing messages. This has increased the risk of credential theft and unauthorized access.
The operational impact of limited Cyber Threat Intelligence (CTI)
Deeptree found that existing CTI solutions, such as AlienVault, provided low-fidelity data that was often outdated or irrelevant to their specific needs. This made it difficult to preemptively block threats before they could cause harm. According to Peter House, CEO of Deeptree, “The trending manual analysis required to cross-walk low fidelity data went from levels of inconvenience to operational impact. The strain of dealing with nation-state actors and criminal groups on our operational tempo was real.”
Resource constraints
As a small team managing a large number of firewalls and clients, Deeptree needed a solution that could automate threat detection and blocking without requiring significant manual intervention.
Leveraging preemptive blocking to defend against sophisticated threats
While Deeptree evaluated several solutions before choosing CrowdSec to enhance their security posture, what truly set CrowdSec apart was its unique approach to threat intelligence and blocking.
“CrowdSec offers curated, high-fidelity data, unmatched by any other tool we tested,” says Peter House, CEO of Deeptree. Unlike other solutions that relied on raw, unverified data, CrowdSec’s threat intelligence is curated by a team of experts, ensuring high accuracy and relevance. This human element, combined with machine learning, provided Deeptree with the confidence they needed to trust the data.
Prior to integrating CrowdSec into their security stack, Deeptree had not utilized any preemptive blocking. “CrowdSec’s ability to automate threat detection and blocking was a game-changer for us,” says Peter. This has been particularly effective against SSH brute-forcing attempts, WordPress scanning, and other common attack vectors.
The CrowdSec Security Engine, Remediation Components, and Blocklists, allowed Deeptree to centralize and automate threat response across their diverse client base and proactively block malicious traffic without manually updating rules, reducing the time and effort required to manage multiple firewalls.
Tangible security improvements
Since implementing CrowdSec, Deeptree has seen significant improvements in their ability to protect their clients and infrastructure:
CrowdSec has saved our team 1-2 hours of labor per day by automating threat detection and blocking. This has freed up our analysts to focus on higher-value tasks.
Peter House, CEO of Deeptree
With CrowdSec’s high-fidelity data and automated blocking, Deeptree has been able to preemptively defend against threats that previously required manual intervention. This has strengthened their overall security posture and reduced the risk of firewall compromises.
A partnership in security excellence
“For Deeptree, CrowdSec has been more than just a security solution — it’s been a strategic partner in our mission to deliver stability and security to our clients.”
Leveraging CrowdSec’s automated threat detection, curated threat intelligence, and simplified remediation, Deeptree is empowered to stay ahead of evolving cyber threats while maintaining their reputation for excellence.
Our partnership announcement with CrowdSec was met with enthusiasm from our clients, who appreciated the added layer of security and the preemptive approach to threat management.
Peter House, CEO of Deeptree
