News & Analysis as of

Cybersecurity Supply Chain National Institute of Standards and Technology

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
McCarter & English Blog: Government Contracts...

The “Prestige”: DoD Unveils NIST SP 800-171 Revision 3, Organizationally Defined Parameters

McCarter & English Blog: Government Contracts... on

On April 15, 2025, the Department of Defense (DoD) released official guidance on Organizationally Defined Parameters (ODPs) appearing in the newly published NIST SP 800-171 Revision 3. At the same time, the DoD reaffirmed...more

Womble Bond Dickinson

Cybersecurity: Salt Typhoon’s Persistence is a Cruel Lesson for Smaller Providers

Womble Bond Dickinson on

This article is based on Carri Bennet’s April 9th presentation at the Palmetto Broadband Coalition Annual Convention in Greenville, S.C. In December 2024, the White House’s Deputy National Security Adviser for Cyber and...more

Skadden, Arps, Slate, Meagher & Flom LLP

Government Contractor Settles FCA Case Over Cybersecurity Maturity Model Certification Violations

Skadden, Arps, Slate, Meagher & Flom LLP on

On March 26, 2025, the Department of Justice (DOJ) entered into a settlement agreement with MORSECORP, Inc. (MORSE), resolving False Claims Act (FCA) allegations that MORSE submitted false claims for payment under Department...more

Goodwin

Crossing Administrations: The Focus on Federal Cybersecurity Continues

Goodwin on

Federal contractors, including defense contractors, should prepare for the emergence of new requirements in the coming months that are designed to strengthen software supply chain security, impose more stringent cybersecurity...more

Husch Blackwell LLP

The Proposed Rule to Amend FAR Guidance on Safeguarding CUI – Care to Comment?

Husch Blackwell LLP on

The FAR Council issued a proposed rule that would amend the several FAR provisions and add new clauses to provide guidance on the safe handling of CUI. Public comments on the proposed rule are being accepted until March 17,...more

Morrison & Foerster LLP - Government...

Biden’s Final Cybersecurity Order Proposes Significant Changes, All to Be Implemented by the Incoming Administration

Morrison & Foerster LLP - Government... on

Citing the threats posed by foreign adversaries and criminal organizations, and seeking enhanced accountability for companies that provide software and cloud services to the federal government, the Biden administration has...more

McCarter & English Blog: Government Contracts...

They Did It. They Really Did It! The Arrival of the FAR CUI Proposed Rule

McCarter & English Blog: Government Contracts... on

After years of anticipation, the Federal Acquisition Regulation (FAR) Council has announced the arrival of its proposed rule to enhance the safeguarding of Controlled Unclassified Information (CUI) in federal contracts (the...more

Foley & Lardner LLP

President Biden Issues Second Cybersecurity Executive Order

Foley & Lardner LLP on

In light of recent cyberattacks targeting the federal government and United States supply chains, President Biden’s administration has released an Executive Order (the “Order”) in an attempt to modernize and enhance the...more

Wiley Rein LLP

Wireless Roundup (December 2024)

Wiley Rein LLP on

FCC Welcomes Comment Regarding BIAS Providers’ Use of Data Caps for Fixed and Mobile Broadband Internet Service: In this Notice of Inquiry (NOI), the Federal Communications Commission (FCC or Commission) seeks comment...more

Wiley Rein LLP

Updates on Cybersecurity Requirements for Government Contractors

Wiley Rein LLP on

Part of the Biden Administration’s push to enhance U.S. cybersecurity capabilities has focused on imposing new requirements on government contractors. The 2023 National Cybersecurity Strategy suggested, for example, that...more

Hogan Lovells

Security Snippets: NIST publishes guide on due diligence for cyber supply chain risk management

Hogan Lovells on

NIST’s “quick-start guide” is designed to assist acquirers as they evaluate the various risks across their network of suppliers, focusing on supply chain tiers, foreign ownership, control or influence (FOCI), provenance,...more

Wiley Rein LLP

Cybersecurity Updates: NIST Publishes SP 800-171 Revision 3. What Changed, and What Comes Next?

Wiley Rein LLP on

In May 2024, the National Institute of Standards and Technology (NIST) published Special Publication 800-171 Rev 3, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, and the accompanying...more

Foley & Lardner LLP

Rolling With the Punches in a Networked World: CCOE Cybersecurity Panel Discussion

Foley & Lardner LLP on

Whether the game is football, baseball, hockey, or Indy Car racing, no team goes into their major championship matchup without training. Companies need to train as well if they intend to operate on the internet and expect to...more

Akin Gump Strauss Hauer & Feld LLP

New Cybersecurity Controls for Government Contractors: NIST Revises SP 800-171

Akin Gump Strauss Hauer & Feld LLP on

In May, the National Institute of Standards and Technology (NIST) issued updated recommendations for security controls for controlled unclassified information (CUI) that is processed, stored or transmitted by nonfederal...more

Wiley Rein LLP

CYBER UPDATE: White House Seeks Regulatory Harmonization While Exploring a Pilot for Reciprocity Amid Proliferation of Regulations

Wiley Rein LLP on

Companies, particularly those in “critical infrastructure” sectors, have seen a dramatic increase in cybersecurity regulatory requirements in just the past few years – and the White House is looking to move faster. At the...more

Holland & Knight LLP

Foundational Cybersecurity Standards for Contractors Updated

Holland & Knight LLP on

The National Institute of Standards and Technology (NIST) released the third revision of its Special Publication (SP) 800-171, "Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations." This...more

Sheppard Mullin Richter & Hampton LLP

CISA Opens Repository for Submission of Software Security Attestation Forms

Sheppard Mullin Richter & Hampton LLP on

On March 11, 2024, the Cybersecurity and Infrastructure Security Agency (“CISA”) and the Office of Management and Budget (“OMB”) released the highly-anticipated Secure Software Development Attestation Form (also known as the...more

Hogan Lovells

NIST refines Cybersecurity Security Framework, with increased focus on governance and supply chain

Hogan Lovells on

NIST has updated its widely used Cybersecurity Framework to provide key updates and practical resources for organizations to manage and discuss cybersecurity risk. The updated framework, which remains voluntary, is designed...more

Wiley Rein LLP

NIST Cybersecurity Framework 2.0 Reveals Major Shifts in Federal Guidance

Wiley Rein LLP on

On February 26, 2024, the National Institute of Standards and Technology (NIST) released the Cybersecurity Framework version 2.0 (CSF 2.0). CSF 2.0 is a generational update to NIST’s foundational cybersecurity guidance, which...more

Sheppard Mullin Richter & Hampton LLP

Update: CISA Seeks Additional Input from Software Providers on Security Attestation Form

Sheppard Mullin Richter & Hampton LLP on

The Cybersecurity and Infrastructure Security Agency (“CISA”) recently revised its Secure Software Development Attestation Common Form (after receiving over 110 comments on the initial draft), and is seeking additional...more

Davis Wright Tremaine LLP

CISA, UK NCSC, and 17 Other Countries Issue Landmark Joint Guidelines for Secure AI System Development

Davis Wright Tremaine LLP on

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the UK National Cyber Security Centre (UK NCSC), along with partner agencies from 17 nations, have released Guidelines for Secure AI System Development (the...more

Davis Wright Tremaine LLP

CISA Releases Revised Draft of Secure Software Development Self-Attestation Form

Davis Wright Tremaine LLP on

The Cybersecurity and Infrastructure Security Agency (CISA) has released a revised draft of its Secure Software Development Attestation Common Form ("Form"). The Form, once finalized, will obligate vendors providing software...more

Lowenstein Sandler LLP

Trade Matters - Lowenstein Sandler's Global Trade & National Security Newsletter - NOVEMBER 7, 2023

Lowenstein Sandler LLP on

1. BIS Releases Texts of New Chip Export Control Rules- Updating and expanding on rules issued last year, the U.S. Department of Commerce’s Bureau of Industry and Security (BIS) released three rules on October 27 targeting...more

Constangy, Brooks, Smith & Prophete, LLP

NIST Issues Cybersecurity Framework 2.0 for public comment

Constangy, Brooks, Smith & Prophete, LLP on

In early August, the National Institute of Standards and Technology released the initial public draft of its Cybersecurity Framework 2.0. The draft is a long-awaited update to a framework that’s been in place for almost 10...more

Harris Beach Murtha PLLC

Cybersecurity Framework Updated to Help Industries Avoid Risks

Harris Beach Murtha PLLC on

The National Institute of Standards and Technology (NIST) released a new draft of its cybersecurity framework on Aug 8, providing updated guidance for industries, government agencies and other organizations on reducing...more

92 Results
 / 
View per page
Page: of 4
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide