Archive for 2020
Monday, December 28th, 2020
With time going by and no real response from the White House regarding the SolarWinds breach, it can be pretty easy to forget about it and move on to the next media cycle. Because that’s what we tend to do here in the US. However, doing that is just NOT a good idea in this […]
Posted in Blog, Cyber Security, Cybersecurity, Ransomware | Comments Off on SolarWinds Breach: Did We Learn Our Lesson Yet?
Friday, December 18th, 2020
It’s true that the current administration does not appear to be reacting to the massive CozyBear cyber breach it fell victim to this year, but fortunately, it appears that somebody is doing something. Who is that somebody? This little company you may have heard of before; it’s called “Microsoft.” And if there was ever a […]
Posted in Blog, Cyber Security, Cybersecurity, Ransomware | Comments Off on New Cyber Superhero? Microsoft Flexes its Cyber Muscles
Friday, December 18th, 2020
We have been reporting for quite a while now that the cyber security within the US government, in general, is just NOT up to par. The recent breach we have discussed over the last week or so really highlighted that fact. It was well-known even before this Russian cyberattack but not much has really been […]
Posted in CMMC, Cyber Security, Cybersecurity | Comments Off on US Government’s Cyber Security is a National Embarrassment
Thursday, December 17th, 2020
The DoD will begin including CMMC cyber security requirements in select solicitations beginning in 2021. Are you ready? It’s really not surprising that the DoD is concerned, especially if you have been following along with our last few blog posts about the massive breach that has compromised major US Governmental departments. As you probably know, […]
Posted in CMMC, Cyber Security, Cybersecurity | Comments Off on DoD Gets Ready for First CMMC Audits
Tuesday, December 15th, 2020
Every day, the information we learn about the FireEye hack just keeps getting increasingly worse. Last week we wrote about the hack occurring; yesterday we reported that not only was FireEye impacted, but the US government was, as well… Along with businesses and other governments across the globe; and today, we are starting to understand […]
Posted in Blog, CMMC, Cyber Security, Cybersecurity, NIST, Ransomware | Comments Off on The Hack that Keeps on Hacking
Monday, December 14th, 2020
We wrote last week about the irony of FireEye being successfully infiltrated by hackers, and we cut them some slack because we realized that the attack was highly sophisticated… FireEye is a $3.5 billion Cyber Security firm that has some big and important clients, like the US government, and though Russia is saying that the […]
Posted in Blog, Cyber Security, Cybersecurity, Ransomware | Comments Off on Russian Attack on Cyber Security Firm Impacts US Government
Tuesday, November 24th, 2020
GoDaddy employees were the target of a sophisticated (and successful) cyber attack… Again. GoDaddy is THE biggest domain registry across the globe. In this scam, hackers were able to lure GoDaddy employees into transferring control and/or ownership of specific domains over to them, closely mimicking a ploy conducted in March, in which bad actors used […]
Posted in Blog, Coronavirus, Cyber Security, Cybersecurity, Home Office, Ransomware, Work from Home | Comments Off on GoDaddy Employees Tricked ONCE AGAIN
Friday, November 20th, 2020
I’m not sure who exactly needs to hear this? But for those in the back: Hackers. Have. No. Shame. They not only give zero flips that there’s a deadly pandemic raging here in the US, but they are using the vulnerabilities created by virtual class- and boardrooms to their advantage… To extreme degrees. Just ask […]
Posted in Blog, Cyber Security, Cybersecurity, Home Office, Ransomware, Work from Home | Comments Off on Hackers Leave Top Law Partner Functionally Homeless
Wednesday, November 18th, 2020
In “news-that-comes-as-a-surprise-to-absolutely-nobody-paying-attention-but-is-still-noteworthy, Chris Krebs (who has been telling anyone that would listen for over a week now that he knows it’s only a matter of time before he is let go), respected Head of the Cybersecurity and Infrastructure Security Agency (CISA), was fired last night around 7 p.m. via a tweet… exactly two weeks to […]
Posted in Blog, Cyber Security, Cybersecurity | Comments Off on Chris Krebs, Respected Director of CISO, Fired via Tweet
Wednesday, November 11th, 2020
Based on some confusing and potentially conflicting information we have found, we thought it was extremely important to clarify all expectations that the DoD has of its primes, subs and vendors. From listening to podcasts, watching and attending webinars, and reading any and every publication and white paper we can get our hands on, one […]
Posted in Blog, CMMC, Cyber Security, Cybersecurity, NIST | Comments Off on Must I Comply with the New DFARS Interim Rule?
Monday, November 9th, 2020
Well, isn’t that ironic? It’s not a good look… You peddle in protecting businesses from cyber attacks, only to fall victim to a successful cyber crime, yourself. But to be completely fair, this was a highly sophisticated and systematic attack (payback, perhaps? That’s pure speculation, by the way!) by what appears to be a concentrated […]
Posted in Cyber Security, Cybersecurity, Ransomware | Comments Off on Cybersecurity Firm Hacked
Monday, November 9th, 2020
Penalties: Case Studies (An Excerpt from Craig’s newest book: “Ultimate Guide to CMMC: How to Access Millions in Government Contracts”) As we have established, it is clear that the “self-reporting” and “honor system” for government contractors who are required to abide by NIST 800-171 to gain government contracts is NOT working. But just because everyone […]
Posted in Blog, CMMC, Cyber Security, Cybersecurity, NIST | Comments Off on NIST Dishonesty: What Happens When Contractors Aren’t Truthful
Friday, November 6th, 2020
“CMMC certification is your Driver’s License on the Information Superhighway.” -Katie Arrington And if that’s the case (which it is), then the self-assessment required by the new DFARS Interim Rule is your permit… One that you must attain before December 1st, 2020 if you want to keep your car on the road- or your contract […]
Posted in Blog, CMMC, Cyber Security, NIST | Comments Off on URGENT DFARS UPDATE: Do Not Lose Your Contract!
Tuesday, November 3rd, 2020
Intrigue. Subterfuge. Deception. Suspense. Is this a new James Patterson novel? No, but it could very well be… This is the tale of a new kind of attack – an attack in the Digital Age, where one person, clicking on an expertly-executed devious email and opening an innocuous-looking Google Doc, allowed hackers in 2020 to […]
Posted in Blog, Cyber Security, Ransomware | Comments Off on WARNING: Healthcare Industry Under Active Ryuk Attack
Tuesday, May 12th, 2020
US Intel Officials warn that Americans are being targeted by foreign spies on Zoom and other video chat platforms. We have been following the saga that is Zoom security since the beginning of the work-from-home boom stemming from the pandemic, and even as Zoom attempts to update its security, more bad press keeps popping up. […]
Posted in Coronavirus, Cyber Security, Home Office, Ransomware, Technology, Work from Home | Comments Off on US Intel Officials Warn Us to Beware of Zoom
Friday, May 8th, 2020
Artificial Intelligence (AI) has played a huge role in assisting physicians during the pandemic. Which may sound a little crazy at first, but if you think about it, actually makes a lot of sense. One of the best ways to keep the disease from spreading, as we all know by now, is by limiting human-to-human […]
Posted in HIPAA, Technology | Comments Off on Artificial Intelligence in the Times of Corona
Monday, April 27th, 2020
BE CAREFUL WITH YOUR EMAILS. We have warned you before that cybercrminals are exploiting the boom in remote worker brought on by the Coronavirus, and we will keep warning you, because this is a trend that likely isn’t going anywhere. Now, hackers are using fake Zoom and WebEx emails to steal login credentials AND download […]
Posted in Coronavirus, Cyber Security, Home Office, Work from Home | Comments Off on New “CatPhising” Campaign Launched Against Remote Workers
Thursday, April 23rd, 2020
As we have previously reported, the spotlight glaring down on teleconference giant, Zoom, during this Covid-19 lock-down has uncovered some pretty major security breaches. Fortunately for those quarantined around the globe, it appears that the company is putting some real effort into fixing those issues. Zoom 5.0 Update Zoom is apparently working on updates to […]
Posted in Coronavirus, Cyber Security, Home Office, Work from Home | Comments Off on Zoom Security Updates on the Way
Monday, April 20th, 2020
Working from home during the global pandemic has allowed the nations of the world to keep their economies limping along while they search for a fix, but it has come with a price. Many remote workers’ home offices are utilizing Virtual Private Networks, or VPNs, to to log in, but they lack the level of […]
Posted in Blog, Coronavirus, Cyber Security, Domains, Home Office, Ransomware, Servers, Work from Home | Comments Off on How Safe is Your VPN?
Tuesday, April 7th, 2020
I don’t think we can stress this enough… Cybercriminals have ZERO shame. They don’t even blink at exploiting a global pandemic for their own personal gain. How do we know that? By the increase in ransomware and distributed denial-of-service (DDoS) attacks during global lock down, when the need to access networks and online businesses is […]
Posted in Coronavirus, Cyber Security, Home Office | Comments Off on Hackers Exploit Home Workers