Newsletter

NIST 800-171 Deadline has Passed, but is your Organization Compliant? 

It's estimated that less than 1% of organizations met the December 31st, 2017 deadline to comply with NIST 800-171 requirements. Fortunately, NNT has several resources to help you jump-start your NIST 800-171 compliance audit, starting with our solution brief which covers: 

• The 14 security control families and how these requirements impact you and your organization
• Examples of Controlled Unclassified Information (CUI) and how to know if your business handles it
• Where to start and why... understand which NNT products will help you achieve compliance 

Download the NIST 800-171 Solution Brief

orbitz suffers data breach

Orbitz, a subsidiary of the online travel agency, Expedia Inc, announced today that hackers have stolen personal information from around 880,000 payment cards. 

Orbitz revealed that attackers broke into a “legacy Orbitz travel booking platform” and accessed users’ names, birthdates, phone numbers, email addresses, physical and/or billing addresses, and genders. The intrusion was initially discovered on March 1 while investigating the consumer and business partner platform in question.

Read more »

58% of healthcare breaches involve insiders

New research from Verizon proves the healthcare industry is still several steps behind other industries in being able to protect patient healthcare information.

The report found that an overwhelming 58% of cybersecurity incidents involving patient data were caused by insiders. Insiders were found to be endangering health data for financial gain (48 percent), fun or curiosity in reading person records (31 percent), and convenience (10 percent).

Read more »

iic releases new iot endpoint best practices

The Industrial Internet Consortium (IIC) has released its Endpoint Security Best Practices whitepaper aimed at simplifying internet of things (IoT) security.

Historically, IoT devices have been riddled with poor security-by-design, default and hard-coded passwords, and improper default configurations for internet access. To help these equipment manufacturers, critical infrastructure operators, and integrators get on the right path to proper security, this whitepaper was developed as a reference for implementing countermeasures and controls to ensure the safety, security, and reliability of IoT endpoint devices.

Read more »

city of Atlanta hit by ransomware

The City of Atlanta’s computer network is still suffering after a ransomware attack hit the city last Friday morning.  

Reports claim that City officials discovered there was an outage affecting several internal and customer-facing applications at 5:40 AM on February 23, where hackers encrypted some of the city’s data. The outage is impacting the applications used by city residents to pay bills or access court information.

Read more »

Group notifications with change tracker gen7

The foundation of NNT Change Tracker Gen7 is the grouping system. Deployed agents and devices monitored by Change Tracker’s agentless operations are placed into groups which carry monitoring templates for that group.

The grouping system is accumulative in Change Tracker, meaning that a single device can reside in more than one group and so a Change Tracker user can dial in granular coverage for the systems within the organization.

Read more »

what you risk by not guaranteeing NIST 800-171 compliance

The National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171 deadline has come and gone, but can your organization guarantee compliance? If not, the consequences for non-compliance will alarm you.

As with other provisions in a federal contract, if the contract contains an applicable regulation, the contractor has agreed that it is in compliance with all contract terms when signing the contract. If not compliant and without having submitted variance requests or plans of action to fix noncompliance, then a contractor could be in breach of contract, resulting in monetary damages or other possible adverse consequences.

Read more »