top of page
  • Writer's pictureJoshua Duvall

GovConJudicata Weekly Debrief (12/14–18)

This week's Weekly Debrief covers the SolarWinds breach, a Senate bill to modernize the government's response to cyberattacks, DNA's request to abort the CUI program, Amazon's newest JEDI protest, and DoD's first CMMC pathfinder contracts.



Cyber

  • "The fallout from the SolarWinds breaches will be far more difficult and time-consuming to remediate than originally assumed, as the attackers likely found more ways to enter federal networks than just the SolarWinds Orion product and have been targeting IT and response personnel, according to the government’s lead cybersecurity agency."

  • Since as far back as March, Russian hackers have been on a sinister tear. By slipping tainted updates into a widely used IT management platform, they were able to hit the United States Commerce, Treasury, and Homeland Security departments, as well as the security firm FireEye. In truth, no one knows where the damage ends; given the nature of the attack, literally thousands of companies and organizations have been at risk for months. It only gets worse from here."


DNI


  • "In a bureaucratic bombshell, Director of National Intelligence John Ratcliffe has asked the White House to rescind a ten-year-old executive order that required a uniform policy for marking and handling 'controlled unclassified information' (CUI)."


Defense


  • "The Defense Department on Thursday disclosed the first seven contracts that are likely to be the initial test cases for the Cybersecurity Maturity Model Certification (CMMC) program, DoD’s new approach to shoring up its suppliers’ IT security."


. . .




Comments


Thanks for subscribing!

bottom of page