Petra Security CEO: If MSPs Can Master Business Email Compromise Security, ‘They Win’

Business‑email‑compromise remains the most lucrative cybercrime vector, with the FBI’s IC3 reporting roughly $3 billion in losses in 2025—far outpacing ransomware. Attackers have evolved from noisy, IP‑based assaults to sophisticated credential‑theft that mimics legitimate user behavior, especially within Microsoft 365 suites. Petra Security’s solution tackles this shift by leveraging AI to analyze intent across mail, SharePoint, Teams and other collaboration tools, allowing MSPs to spot subtle anomalies that traditional signatures miss. By concentrating on identity‑based threats, Petra addresses the core revenue‑driving problem for its channel partners.

For MSPs, the biggest operational hurdle is alert fatigue; dozens of low‑signal warnings drown security teams. Petra’s platform distinguishes itself by delivering high‑confidence alerts that require minimal triage, and it can be deployed in a minute without full tenant access. Within 24 hours, the Scan product provides a six‑month compromise history, giving MSPs concrete evidence to educate clients and close sales. The automatic removal of phishing emails across all managed tenants further amplifies value, turning a single detection into a protective ripple for an entire client portfolio.

Petra’s growth ambitions underscore the market’s appetite for specialized BEC defenses. With mid‑seven‑figure revenue today, the company targets a five‑fold increase in the next year, driven by rapid feature releases—often weekly—and a tight feedback loop with MSP partners. Faster response times, aiming to shave seconds off detection cycles, signal a relentless focus on operational efficiency. As MSPs become the frontline defenders for thousands of SMBs, Petra’s identity‑centric approach could set a new standard, forcing competitors to shift from legacy IP‑based models to behavior‑driven AI solutions.