Saturday, July 31, 2021

Subscribers Only

Free

Air Force Licenses its Vulnerability Detection Software to Private Sector

The Air Force’s 90th Cyberspace Operations Squadron has signed patent license agreements with two unnamed private companies for Whiddler, a program it developed to detect software vulnerabilities. The first cooperative research and development agreement (CRADA) was signed in December, the second in May. Under these agreements, the companies can use the technology and transfer it […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

House Task Force Prepares Legislation on Supply Chain Vulnerabilities

The House Armed Services Committee’s supply chain task force has spent three months analyzing the Defense Department’s problems in that area. It is now ready to release a report, to be followed by legislative proposals in July, just in time for potential inclusion in the 2022 National Defense Authorization Act. “Our goal was to not […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Small Business Advocates Share CMMC Concerns with Congress

Small business owners have warned the House Committee on Small Business that uncertainty over the costs and timeline of the CMMC could push them...

DoD and Accreditation Body Trying to Address CMMC Cost Concerns of Small Businesses

Jesse Salazar, deputy assistant secretary of defense for industrial policy, said at a recent conference that a high-level review of the Cybersecurity Maturity Model Certification is ongoing, and that officials intend to address small businesses’ concerns about compliance costs, among other changes to the much-debated program. He noted that the number of small businesses in […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Langevin Says DoD Needs Principal Cyber Advisor Appointed ASAP for CMMC

Representative Jim Langevin (D-RI) is calling on the Biden administration to fill the vacant position of Principal Cyber Advisor for the Department of Defense,...

Software Development: DoD Faces Risks and Challenges in Implementing Modern Approaches and Addressing Cybersecurity...

The Department of Defense plans to spend $12 billion on its 29 largest business information technology systems during FYs 2019-2022. DoD’s efforts to modernize business systems has been a topic on our High Risk List since 1995. In a recent study, GAO found: 22 programs that were actively developing software reported using approaches that reduced […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Accreditation Body Founder Says CMMC Lacks Needed Resources

Chris Golden, director of Information Security at Horizon Blue Cross Blue Shield of New Jersey and a founding member of the CMMC accreditation body,...

Hacking the Army Uncovers Over 200 Vulnerabilities

Security researchers’ third annual opportunity to “Hack the Army” for cash uncovered 238 security vulnerabilities in its systems, 102 of them rated “high” or “critical.” The event ran for six weeks beginning in January, and included 40 military and civilian participants. Eligible civilians received more than $150,000 in bounties. The assets in scope this time […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

How Do You Address Solicitation Requirements and Contract Performance After CMMC Rollout?

Understanding the requirements for compliance with the interim DFARS rule on basic assessment and compliance with Cybersecurity Maturity Model Certification is not a task...

INSA Presents Recommendations for Potential DoD Threat Hunting Program

Carrying out a Cyberspace Solarium proposal enacted by the latest NDAA, the Defense Department is designing a possible threat hunting program that would focus on identifying vulnerabilities in the systems of defense contractors. The Intelligence and National Security Alliance, a non-profit professional organization for intelligence and national security personnel, has presented a set of recommendations. […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.