Monthly Archives: February 2020

Officials worry Iran will target defense contractors with cyberattacks

The Department of Defense remains on alert for retaliation in cyberspace for a U.S. attack that killed a top Iranian general. But security experts and federal officials warn that Iran could target the military another way — through potentially vulnerable defense contractors. Weak cybersecurity practices in the complex DOD supply chain could make those companies attractive targets if Iran wanted to strike…

Read more

Navigating Risky Waters Of DOD Cybersecurity Certification

Law360 (February 6, 2020, 5:13 PM EST) — On Jan. 30, the U. S. Department of Defense released version 1. 0 of the Cybersecurity Maturity Model Certification, or CMMC, framework, which will require DOD contractors and subcontractors to obtain third-party certification of their cybersecurity maturity. [1]This highly anticipated 390-page release supersedes the prior draft versions, the last of which was…

Read more

DOD to Require Cybersecurity Certification in Some Contract Bids

By the end of September, the Defense Department will require at least some companies bidding on defense contracts to certify that they meet at least a basic level of cybersecurity standards when responding to a request for proposals. DOD released its new Cybersecurity Maturity Model Certification today, billed by the undersecretary of defense for acquisition and sustainment as “Version 1.0.”…

Read more