Cyber Security News

What we’re talking about

Understanding CMMC Requirements
Cyber Security

Understanding CMMC Requirements for DoD Suppliers

Understanding CMMC Requirements is critical for businesses of all sizes in the defense industry.  This need is becoming more urgent as final release of CMMC 2.0 is expected to occur in 2023.  Failure to achieve an appropriate level of Cybersecurity Maturity Model Certification in a timely manner may impede an organization’s ability to participate in

Read More »
messaging app security
Cyber Security

Messaging App Security and Information Privacy

Many users take messaging app security for granted when sending text messages, voice messages, photos, and videos.  However, not all apps secure messaging data equally.  This is a concern for both organizations and individuals who wish to ensure the confidentiality, integrity, and authenticity of information transferred between authorized users. Elements of Messaging Security Messaging app

Read More »
Infrastructure and Manufacturing Cyberattacks
Cyber Security

Infrastructure and Manufacturing Cyberattacks Continue

Infrastructure and the manufacturing sector concerns pose tempting targets for cyberattacks.  Widespread effects that can harm vast sectors of society can occur when these systems are compromised. When considering Cyber Security first thoughts usually go to computers and information technology, but industrial devices and processes can fall victims as well.  On May of 2021 the

Read More »
cybersecurity strategy
Cyber Security

Cybersecurity Strategy and Business Management

Having a Cybersecurity Strategy is Essential Having an effective cybersecurity strategy to protect information assets is a necessity in today’s business world.  News stories and alerts appear daily, informing us of yet another threat or data breach that has put at risk the valuable data and security of millions of people.  This endless pressure can

Read More »
cybersecurity maturity model certification
Cyber Security

Cybersecurity Maturity Model Certification (CMMC)

What is Cybersecurity Maturity Model Certification? The Office of the Under Secretary of Defense for Acquisition & Sustainment has released the Cybersecurity Maturity Model Certification program.  The program will be made effective in new programs released by the Department of Defense (DoD) and will be a requirement for product and service providers.  This program has

Read More »
Cybersecurity threats trending methods
Cyber Security

Cybersecurity Threats Trending Methods for 2021

Cybersecurity Threats by Industry Sector Cybersecurity threats remain a significant concern for organizations in every sector.  IBM’s 17th Cost of a Data Breach Report provided insights in to the nature of the threat environment in 2021.  This report provides an assessment of risks and strategies for protecting data and responses to data breaches. Among its

Read More »
ISO 27001 Prevents Cyberattacks
Cyber Security

ISO 27001 Prevents Cyberattacks – ISMS for Data Security

ISO 27001 Prevents Cyberattacks Implementing an ISO 27001 Information Security Management System (ISMS) prevents cyberattacks.  The Ponemon Institute in a 2017 study found that a typical firm experiences 130 security breaches each year.  Mitigating these breaches requires more than advanced IT practices, it requires a dedicated management system.  ISO/IEC 27001 is such a system.  It

Read More »
DoD Announces CMMC 2.0
Cyber Security

DoD Announces CMMC 2.0 to Ease Requirements

In an effort to ease requirements for the protection of Controlled Unclassified Information (CUI), the Department of Defense (DoD) has announced CMMC 2.0.  This new version of the Cybersecurity Maturity Model Certification (CMMC) program will pare down the scope and requirements placed on the Defense Industrial Base. Initial CMMC Cybersecurity Requirements Daunting CMMC was created

Read More »
spyware a growing concern for businesses
Cyber Security

Spyware a Growing Concern for Businesses

According to a number of leaders in cybersecurity, spyware is becoming an issue of growing concern for businesses.  Malwarebytes, in its 2021 report, Malwarebytes 2021 State of Malware Report, observed that business spyware detections increased 51% in 2020.  These spyware infections can be found on both computers and mobile devices. What is Spyware? Spyware is

Read More »
technical data and export law
Cyber Security

Technical Data and Export Law – Canada and the U.S.

Technical Data and Export Law Understanding what technical data is and how it pertains to export law is important for companies doing business in the U.S. and Canada.  Both countries have different requirements and regulations controlling how technical data is stored and transferred.  Additionally, these regulations are subject to change. What is Technical Data? Definitions

Read More »
CMMC Under Review
Cyber Security

CMMC Under Review Before Final Release

CMMC Under Review by DoD The DoD is finalizing changed to the Cybersecurity Maturity Model Certification program (CMMC) in an attempt to sufficiently address national security requirements without overburdening the defense industrial sector.  According to an article recently published at the Federal News Network, these changes are to be released soon as a finalized plan

Read More »
CMMC Still on Schedule
Cyber Security

CMMC Still on Schedule. Is Your Business?

CMMC Still on Schedule Despite Covid-19 Setbacks The Cybersecurity Maturity Model Certification (CMMC) is still on schedule according to articles posted by National Defense Magazine.  CMMC was developed by the Department of Defense and industry as an effective means of implementing a risk based management approach to cybersecurity.  The first draft (Version 1.0) was released

Read More »
Supermicro Hardware Hack
Cyber Security

SuperMicro Hardware Hack on Server Motherboards

Bloomberg reported on February 12, 2021 that a Supermicro hardware hack had been conducted on server motherboards by a Chinese espionage program.  This report follows previous reports by the news agency in 2018 and illustrates the susceptibility of technology manufacturers to supply chain attacks.  The hack involved embedding a small integrated circuit into the trace

Read More »
international trends in cybercrime
Cyber Security

International Trends in Cybercrime 2021

International trends in cybercrime show an increasing sophistication by both organized crime and hostile nation states.  These cybercriminals are continuing their efforts against high-value targets that include the industrial, IT, and infrastructure sectors.  This activity is occurring at a time when many organizations are struggling to develop integrated cybersecurity solutions. Cybercrime Exploitation of Uncertainty Cybercrime

Read More »
Karlton Johnson leads CMMC
Cyber Security

Karlton Johnson Chairs CMMC Accreditation Body

Karlton Johnson chairs CMMC-AB after serving as interim since September of 2020.  The accreditation body can now continue in its efforts to accredit sufficient assessors to certify the cybersecurity maturity of Department of Defense contractors.  The body had faced a challenges when on September 2, 2020 two members of the Cybersecurity Maturity Model Certification Accreditation

Read More »
Interim CMMC Version Released
Cyber Security

Interim CMMC Version Released After Leadership Change

An Interim CMMC version was released on September 29, 2020 finishing off a tumultuous month at the organization.  On September 2, 2020 two members of the Cybersecurity Maturity Model Certification Accreditation Board were voted off in the midst of a conflict of interest controversy involving a pay to play strategy.  Karlton Johnson is now the

Read More »