DoD Working on CMMC-Fedramp ‘Reciprocity’ by Year End CMMC, the DoD’s new cybersecurity standard is designed to measure security practices of companies and the servers in the computer rooms and data centers. But what about the stuff in the cloud. That is covered by another government standard called FedRAMP. But those two standards have different […]
Continue reading → [DISPLAY_ACURAX_ICONS]Now that the power is mostly back on in Texas and the majority of people can drink the water, the what-iffing begins. This is relevant because Texas is far from alone. They just got caught this time and they will be pilloried – for the most part appropriately – as a result. #1 – According […]
Continue reading → [DISPLAY_ACURAX_ICONS]Early this month, New York’s Department of Financial Services, the regulator for banks and insurance companies, issued guidance on cybersecurity insurance. Unfortunately, the guidance was not to insurance customers; it was for insurance companies. The regulator is concerned that big breaches may cause insurance companies to go out of business. DFS advised insurers against paying […]
Continue reading → [DISPLAY_ACURAX_ICONS]If you read the security news or talk to security vendors, the buzz word of the year is ZERO TRUST. Many vendors tell you that they have the zero trust answer. The reality is a lot more complex. Zero trust is not a product or even a family of products. It is not a platform. […]
Continue reading → [DISPLAY_ACURAX_ICONS]Parler is Back Online After being down for a month after getting kicked off Amazon, Parler is back online. Existing accounts can log in now; new accounts can be created next week. They have a new interim CEO after the board fired the last one. It does not appear that old content was moved over […]
Continue reading → [DISPLAY_ACURAX_ICONS]Last October Wilmington Surgical Associates was dealing with a ransomware attack. Allegedly, the Netwalker ransomware group stole 13 gigabytes of data, which in today’s world easily fits on a flash drive, and leaked that data online. The patients of the North Carolina clinic whose data was stolen and leaked are seeking “redress for its unlawful […]
Continue reading → [DISPLAY_ACURAX_ICONS]