Bluetooth should be avoided on systems doing any kind of work for the Federal government – DoD or civilian. When tightening security for system access, it’s important to consider all vectors of attack—especially Bluetooth-enabled peripherals like keyboards, mice, earbuds, and other devices. Here’s why: CMMC Control AC.L1-3.1.1 (Access Control): This Read more…
It looks like a USB charging cable. And it is. But it’s more. What looks like a simple charging cable can actually be an advanced tool with a WiFi access point that can be used to take control of a computer and steal data. To make matters worse, standard intrusion and Read more…
Are CMMC certificates really valid for three years? Yes. But… Once the CMMC program is implemented (December 16, 2024), C3PAOs will be able to issue cybersecurity compliance certifications to organizations that pass audits. These certifications are valid for three years. However, a certification may lapse if there is a change Read more…
For CMMC compliance, will DoD provide standardized templates for a System Security Plan (SSP) and Plan of Action and Milestones (POA&M)? No. The DoD does not plan to create specific templates for compliance documentation, recognizing that each organization is unique. A “one-size-fits-all” template would not generally be helpful. DFARS 252.204-7012 Read more…
For CMMC compliance, will DoD provide standardized templates for a System Security Plan (SSP) and Plan of Action and Milestones (POA&M)? No. The DoD does not plan to create specific templates for compliance documentation, recognizing that each organization is unique. A “one-size-fits-all” template would not generally be helpful. DFARS 252.204-7012 Read more…
Securely managing software and system configurations is a challenge. But software and system configuration management is critical to information security. This is where a Definitive Media Library (DML) comes in. A DML is a secure, centralized repository that stores authorized, known-good copies of software, operating systems, and configurations. It plays Read more…
It’s Friday afternoon at Quantum Naval Solutions. A network intrusion detection system has identified vulnerability scanning activity from an internal IP address. The activity stops, and the device using that IP address disappears from the network. How should Quantum handle this situation? Quantum activates its written Incident Response Plan. The Read more…
Your technical sales support person is the most knowledgeable person in your company about WiFi. She discovers that problems with connections may be caused by two WiFi access points that have the same name. There should only be one… Here’s what should happen next: First, your written Incident Response Plan Read more…
Imagine this: Your team is suddenly experiencing flaky WiFi access. Users are getting connected, disconnected, reconnected—sometimes multiple times this morning. When they’re connected, everything seems to work. Then, they get disconnected AGAIN, and the system just hangs for a bit until they’re reconnected. You call your technical sales support person Read more…
Post-Incident Recovery is the final stage of a well-written Incident Response Plan. Once a security incident is fully resolved, the work shouldn’t stop there. Post-incident recovery is a crucial phase that focuses on ensuring that your organization is not only back to normal but also better prepared for the future. Read more…