Small Law Firms Face Greater Cyber Risk and Responsiblity Than They May Realize
Among the cybersecurity holdouts among legal practitioners are small firms and solo practitioners. They may not recognize the risks they face, think safety precautions are a nuisance, lack technical savvy, or are concerned about the cost. “At the end of the day, lawyers are fiduciaries to our clients,” warns McCarter & English’s Scott Christie. “They […]
Department of Commerce Convenes Virtual Forum on Supply Chain Risks in Semiconductor Manufacturing and...
The U.S. Department of Commerce’s Bureau of Industry and Security Office of Technology Evaluation will hold a virtual forum on April 8, 2021, to...
Byte-Sized Q&A: What About Controlled Technical Information?
Crowell & Moring’s “Byte-Sized Q&A” podcast takes the complex world of government contracts cybersecurity and breaks it down into byte-sized pieces. In this episode, host Kate Growley talks about what government contractors need to know about controlled technical information or CTI. More at Crowell & Moring
Krebs Downplays Need for National Cyber Director
Former CISA head Chris Krebs is pushing back against lawmakers who are urging the White House to rapidly nominate a national cyber director. Krebs disagreed with the Cyberspace Solarium Commission’s recommendation to create the position, arguing that the government should instead be “clarifying and strengthening existing agencies.” In response to a statement from Senator Angus […]
Finding the Weak Links – President Biden Executive Order Demands Review of Critical U.S....
On February 24, 2021, President Biden signed Executive Order 14017, “Executive Order on America’s Supply Chains,” requiring a review of global supply chains that support key U.S. industries in an attempt to improve supply chain security for the U.S. government and U.S. companies. The new Executive Order appears to be an initial step focused on […]
Nonprofit Recommends that FEMA Lead Cyber, Pandemic Responses
A commission set up by the non-profit Business Executives for National Security, is urging Congress to amend the Stafford Disaster Relief and Emergency Assistance Act to broaden the definition a “disaster” to include pandemics and cyber incidents. According to the organization, FEMA would then be able to more quickly respond to such incidents, providing support […]
NIST Offers Cybersecurity Guide Tailored to the Hospitality Industry
In recent years attackers have compromised the networks of several major hotel chains, exposing the information of hundreds of millions of guests. A new practical cybersecurity guide from the National Institute of Standards and Technology can help hotel owners reduce the risks to a highly vulnerable and attractive target for hackers: the hotel property management […]
Senate Version of Florida Privacy Law Moves Forward; House Version Makes Class-Action Lawsuits Even...
The Florida Senate’s version of a new comprehensive privacy law (a.k.a. the “Florida Privacy Protection Act” (FPPA)) passed unscathed out of the Senate’s Committee on Commerce and Tourism yesterday. The bill’s sponsor fought off two proposed amendments: one that would have eliminated the private right of action and a second that would have required more […]
Biden $2T Infrastructure Spending Plan Includes Numerous Cybersecurity Provisions
The $2 trillion infrastructure spending proposal unveiled by the Biden administration includes several projects with potential cybersecurity components, such as upgrading the electrical grid,...
CISA Orders Federal Agencies to Immediately Recheck Patched Exchange Servers
The DHS Cybersecurity and Infrastructure Security Agency has issued a supplemental directive requiring all federal agencies to use the latest MSERT tool from Microsoft and a script called Test-ProxyLogon.ps1 to identify vulnerable Microsoft Exchange servers in their environments. Agencies are directed to scan weekly with an updated MSERT for the next four weeks. CISA also […]