Attackers display active interest in MSPs, exploiting vulnerabilities to infect their clients with cryptomalware.