Private Sector

Bill would require big social platforms to support data mobility

Under the bill, the Federal Trade Commission would assess data interoperability for platforms with more than 100 million monthly users.

A practical guide to CMMC

What all federal agencies need to know about DOD’s cyber maturity model certification program.

The small federal office at the heart of Biden's equity agenda

The Office of Federal Contract Compliance Programs at the Department of Labor may not be a household name but it plays an outside part in conducting oversight of pay and hiring discrimination.

Google wins decade-old software case against Oracle

The Supreme Court ruled that Google was within its rights to copy and repurpose 11,500 lines of Java software code in the Android mobile operating system.

Expected breach disclosure mandates will test government-industry cooperation

The White House and lawmakers are eyeing steps to make sure contractors have to alert the federal government to cybersecurity breaches on their systems, but expect companies to balk at rules that put them at risk for legal action or require the disclosure of trade secrets.

CMMC board preps for staff changes

The body in charge of standing up and running the Defense Department’s unified cybersecurity standard is shifting its staffing arrangement.

Crowdstrike: Pandemic drove 2020 uptick in cyberattacks

The company's new report highlights the threats facing healthcare institutions by both criminal and nation state-backed actors.

CMMC reciprocity in sight for 2021

The Defense Department is still figuring out how to give contractors reciprocity with the Cybersecurity Maturity Model Certification program and similar certifications, but the end is close, officials say.

New risks threaten defense industry's cybersecurity, report claims

Newly reported cybersecurity vulnerabilities inched past 17,000 in 2020, signaling worsening security in the defense industrial base, according to a National Defense Industry Association report.

Final rule, formal training orgs on CMMC could hit this summer

A final rule on the Defense Department's unified cybersecurity standard could debut as soon as this summer but implementation hinges on standing up a formal training system.

Investor launches class-action lawsuit against SolarWinds over hack

SolarWinds is facing a class-action lawsuit in a Texas court from an investor who says the company misled the public and its customers by not disclosing a known vulnerability to its update server.

Congress moves to bring back domestic microelectronics manufacturing

The 2021 National Defense Authorization Act would sets a timetable for DOD to stop buying microelectronics manufactured in certain countries, potentially boosting domestic manufacturing for national security.

FireEye cyber tools stolen in 'state-sponsored' attack

The company's chief executive officer wrote in a blog post that an initial investigation suggests the attackers were likely backed by an adversarial nation.

Making knowledge transfer work virtually

Managers taking over a contract from an incumbent may need to hire new employees, onboard employees from the incumbent company and create cohesive and tight-knit teams – and doing this work in a pandemic environment requires some adjustment.

White House plans to fast-track restrictions on contractor diversity training

The fast-track deviation clause, designed to support the Nov. 21 rollout of new restrictions on diversity and inclusion training for federal agencies and contractors, is expected to be followed quickly by a Federal Acquisition Regulation rulemaking case.

Re-imagining the small-business mentor-protege model

Steve Kelman looks at the efforts of a non-traditional contractor to bring new firms into the fold.

4 ways to prepare for Cybersecurity Maturity Model certification

While this compliance may seem challenging, your company can be ready.