Cybersecurity

DOJ Will Use False Claims Act to Target Cybersecurity Fraud

On October 6, Deputy Attorney General Lisa Monaco announced the launch of the US Department of Justice’s (DOJ) Civil Cyber-Fraud Initiative. The DOJ will utilize the False Claims Act (FCA) to pursue cybersecurity related fraud by government contractors and grant recipients.  The False Claims Act was enacted during the Civil War to stamp out fraud…
Read More
Cybersecurity Executive Order

How to Comply With Biden’s Executive Order on Cybersecurity

On May 12, President Joe Biden issued his 44th executive order of the year– and his first targeting cybersecurity. The executive order is primarily concerned with protecting federal networks from cybersecurity threats, with many of its requirements aimed at federal contractors. Additionally, the order functions as a call for a more generally secure cyberspace, and urges…
Read More

2020 News in Review

Week Ending December 28  ICO Warns SolarWinds Victims to Report Breaches  The United Kingdom’s Information Commissioner’s Office (ICO) has issued a warning to organizations compromised by the SolarWinds breach. The breach, which was carried out by Russian hackers, affected more than 18000 organizations worldwide. ICO requires UK data controllers subject to NIS regulations to report…
Read More

What We Can Learn From the SolarWinds Breach

SolarWinds, a network management software company, found itself the direct victim of an insidious malware breach last week that had been in the works for months. The hack involved the installation of malware onto an updated version of their software, which was downloaded by over 18,000 customers, including approximately 421 Fortune 500 companies–and large swaths…
Read More
CMMC Contract Levels

Binary New Cybersecurity Compliance Requirements for Government Contractors

SPECIAL FROM AFFILIATE MEMBER To address increasing cybersecurity risk to government contractors that are defense suppliers (collectively the Defense Industrial Base, or DIB), the U.S. Department of Defense (DoD) is aggressively implementing an enhanced cybersecurity compliance regime to protect sensitive data associated with DoD contracts. The Cybersecurity Maturity Model Certification (CMMC) program is a consolidated…
Read More
DoDs New Cybersecurity Certification

Explaining the DoD’s New Cybersecurity Certification

By 2026, any contractor that works with the Department of Defense must meet the standards set by version 1.0 of its Cybersecurity Maturity Model Certification (CMMC). The Pentagon released the new standards on Jan 31, which will require third-party certification of cyber resilience from DoD contractors and subcontractors. For contractors who hope to work with…
Read More
Back To Top