I understand why they want to do this and I hope they have some smart people trying to figure out the rules, but given things move so fast, it is likely that any rule will be obsolete in 6 months and the government is not good at dealing with situations like that. In a document soliciting public […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
If you sell to the federal government – any agency – you need to pay attention to this. Until now only DoD contractors were going to have to comply with CMMC or NIST SP 800-171. The standard requires 100% compliance with 110 controls; some of them pretty straight forward like having each user having their […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
FDA Will No Longer Approve Digital Medical Devices That Are Vulnerable Starting last month, the FDA will REJECT all new applications for any cyber medical device that does not include a cyberattack protection plan. Of course this won’t be perfect, but at least manufacturers will have to make an effort at it. Given that the […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
As I teased last week, the law is always behind the tech world. Way behind. AI is no different. But that doesn’t mean that the government isn’t going to try. On March 15th the Copyright Office issued registration guidance on works containing material generated by AI. This is probably not something you are thinking about. […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
This is a secondary problem of vendor cyber risk. The first problem is that you are dependent on a lot of vendors. You have to depend on those vendors. If they screw up, you get sued. And you lose customers. To make matters worse, when one of your vendors gets breached, you are only one […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
Last week it was revealed that VoIP communications company 3CX was compromised and was distributing a malicious version of their desktop software to hundreds of thousands of paying customers. This is not an attack where users go to find sketchy websites and download “free” software that should be paid for. Rather, this is licensed software […]
Continue reading →
[DISPLAY_ACURAX_ICONS]