27 06 '19
Multifactor Authentication – Raising the Bar

Multifactor Authentication – Raising the Bar

Organizations doing business with the U.S. Government, or planning to do so, must consider the potential for increased cybersecurity requirements. Contracts that include the creation, communication and/or storage of controlled...
11 06 '19
Business Operating Policies Enable Compliance

Business Operating Policies Enable Compliance

Compliance with the security controls described in NIST SP 800-171 Revision 1 and DFARS Clause 252.204-7012 is required for organizations doing business with the U.S. Federal Government that involves the transfer, storage and processing...
15 05 '19
Microarchitecture Data Sampling (MDS) – Zombieload

Microarchitecture Data Sampling (MDS) – Zombieload

Vulnerability We are following the news of recently published vulnerabilities to Intel CPU architectures. These vulnerabilities are known as microarchitecture data sampling (MDS) flaws, with implementations variously called Zombieload, RIDL,...
16 04 '19
Credential Stuffing and NIST SP 800-171

Credential Stuffing and NIST SP 800-171

Businesses face a growing number of vulnerabilities and adversarial tactics aimed at compromising the information they hold dear. The data entrusted to organizations in support of government contracts is of...
09 04 '19
NIST SP 800-171 Control Families – Overview

NIST SP 800-171 Control Families – Overview

For non-governmental organizations that do, or hope to do, business with the U.S. government, careful consideration must be given to whether controlled unclassified information is part of the specified contract...
02 04 '19
VPN for Business is more than just a VPN

VPN for Business is more than just a VPN

For small businesses involved in contracts with the Federal Government or Department of Defense, compliance with security requirements for the protection of controlled unclassified information (CUI), security for your network...
21 03 '19
World Backup Day and NIST SP 800-171

World Backup Day and NIST SP 800-171

Backups and Archiving World Backup Day is March 31st – a whole day to help remind us to ensure our valuable information is properly protected and available should the need arise....
18 03 '19
NIST SP 800-171 and DFARS Clause 7012

NIST SP 800-171 and DFARS Clause 7012

New Cyber Security Regulations For small businesses planning to business with the U.S. Government and Department of Defense, new cyber security and incident reporting rules will apply. The rules can...
14 03 '19
Email Security and NIST SP 800-171 Compliance

Email Security and NIST SP 800-171 Compliance

Like most everyone else, we use email services daily in our small business activities. From general announcements to document and file sharing, email is ubiquitous. Adversaries have long known this...