Jeff Stutzman The Cybersecurity Maturity Model Certification (CMMC) is a framework developed by the U.S. Department of Defense (DoD) to enhance cybersecurity measures across the defense industrial base (DIB), and it becomes law on December 16, 2024. The aim of CMMC is to protect sensitive unclassified information, including Federal Contract…
Continue reading →Last quarter we wrote about what an employee might first witness when facing 10 common cyberattacks. Then we provided guidance for the employee on how to react to each scenario. This week we highlight effective prevention techniques to stop those 10 common cyberattacks from even happening to begin with. In…
Continue reading →Cameron Shilling Disaster strikes. One of your employees was tricked into changing the payment account for your business’s largest vendor, sending a series of payments to a fraudulent account. The vendor has now cut off your business until you pay the outstanding balance of hundreds of thousands of dollars. Or,…
Continue reading →The Federal Trade Commission (FTC) enforces federal laws prohibiting false advertising. It also enforces consumer protection laws aimed to prevent fraud, cyberattacks and identity theft. The FTC has become increasingly active when those two issues collide — when companies falsely represent the extent to which they protect consumers’ data from…
Continue reading →Domenic Steinbrueck Vulnerability Assessment vs. Penetration Test Many security professionals, from CISOs to aspiring penetration testers, continue to debate whether to employ vulnerability assessments or penetration testing within their information technology (IT) and operational technology (OT) environments. Although both actions can strengthen an organization’s security posture, they are separate practices…
Continue reading →
