#DoD – Xynik

Penn State Settles for $1.25M Over Failure to Comply With DoD, NASA Cybersecurity Requirements

October 24, 2024 by Xynik

October 24, 2024 at 06:54AM Penn State University will pay $1.25 million to settle claims of not meeting cybersecurity requirements for Department of Defense and NASA contracts. This settlement addresses alleged compliance failures related to security standards essential for these federal contracts. ### Meeting Takeaways: 1. **Settlement Amount**: Penn State University will pay $1.25 million. … Read more

Pentagon Received Over 50,000 Vulnerability Reports Since 2016

March 18, 2024 by Xynik

March 18, 2024 at 09:15AM The US Department of Defense has processed 50,000 reports through its vulnerability disclosure program, initiated after the success of the ‘Hack the Pentagon’ bug bounty program. Collaborating with platforms like HackerOne, Bugcrowd, and Synack, DoD expanded its bug bounty programs, saving an estimated $61 million and receiving over 45,000 vulnerability … Read more

Pentagon Wants Feedback on Revised Cybersecurity Maturity Model Certification Program

December 29, 2023 by Xynik

December 29, 2023 at 07:54AM The US Department of Defense has proposed a rule for the Cybersecurity Maturity Model Certification (CMMC) program, seeking public feedback. The program aims to ensure defense contractors and subcontractors implement security measures to protect federal contract information and controlled unclassified information. The revision allows for self-assessment, emphasizes cooperation with industry, … Read more