720-891-1663

DoD Contractors: Will You Have to Replace Your MSP?

If you are a defense contractor, then over the next few years you will likely have to be compliant and maybe certified for CMMC, either at level one or level two. Level one has about 17 controls and 59 assessment objectives; level two has 110 controls and about 315 assessment objectives. Assessment objectives are the […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Feds Say CISA Not Prepared to Defend OT

If that headline doesn’t keep you up at night, I don’t know what will. The Government Accountability Office (GAO) says they have have found inefficiencies in CISA’s information sharing practices, in particular with critical infrastructure stakeholders. They also say that CISA is understaffed for handling OT incidents. Just to make sure everyone is on the […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Microsoft Plans to Deprecate 1024 Bit RSA Keys

Microsoft is often between a rock and a hard place. They would like to be more secure but not at the expense of offending their customers. Here is an example of that. Microsoft has announced that RSA keys shorter than 2048 bits will soon be deprecated in Windows Transport Layer Security (TLS) to provide increased […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News for the Week Ending March 15, 2024

No Honor Among Crooks – Darknet Site Extorts Vendors, Buyers I guess we should not be surprised, but darknet narcotics bazaar Incognito Market has posted a threat on its homepage that if its vendors and buyers don’t pay an extortion of between $100 and $20,000, they will publish all of their transaction and chat records. […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Your Carmaker May Be Selling Your Driving Data to Your Insurance Company

One thing about a country that has no federal privacy law – There are very few limits on what someone can do with data that they have legally collected. The legal part is that you agreed to allowi your “smart car” to collect your driving data. That data may include things like your speed and […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Feds Fine Boeing $51 Million for ITAR Violations

For decades the DoJ seemed to be ignoring cybersecurity failures on the part of even large companies. That has changed. DoJ has started up an entire bureau for going after companies that ignore the rules. Recently they fined Booz $335 million for False Claims Act violations. Last week they announced they are going after Georgia […]

Continue reading → [DISPLAY_ACURAX_ICONS]