Max2 Security

The U.S. Department of Justice (DOJ) announced that Pennsylvania State University (Penn State) agreed to pay $1.25 million to resolve allegations under the False Claims Act. These allegations involve Penn State’s failure to comply with federal cybersecurity requirements in contracts with the Department of Defense (DoD) and NASA between 2018 and 2023. This case underscores the enforcement of cybersecurity standards under the DOJ's Civil Cyber-Fraud Initiative, signaling the need for all contractors handling federal data to meet stringent cybersecurity obligations. This case serves as a crucial warning to companies managing federal contracts, particularly regarding compliance with the Department of Defense’s Cybersecurity Maturity Model Certification (CMMC) requirements. Non-compliance with cybersecurity obligations can lead to severe penalties, reputational harm, and potential litigation under the False Claims Act. The DOJ’s enforcement actions reinforce the necessity for contractors to uphold rigorous cybersecurity standards to protect sensitive federal information. #highered #cybersecurity https://lnkd.in/eUyZzSJY

Lucky to be able to sit in on an immersive cyber defence session at the NJSBA Workshop session co-hosted by Dawn Dunkerley and Evan Abramson. Some great key takeaways while having a bit of fun.

First class Halloween costume for anyone still looking for an idea! All jokes aside, remember these top six phishing email warning signs: *Bad spelling or grammar *Requests for personal information *Generic greetings *Urgency *Mismatched email domains *Unexpected requests for action #gonephishing #cybersecurity

A great opportunity to educate yourself on cybersecurity trends and take those learnings back to your schools. #education #cybersecurity

Honored to present at NJEdge #EdgeCon with Moe Rahman a session that covered from policy to practice.   In this session, we explored the journey of transforming cybersecurity policies into actionable practices that involve participation and governance at all levels of an institution. Our focus was on developing a cybersecurity blueprint that not only adheres to the highest standards of security and regulatory mandates but also embraces and can be implemented by everyone within the organization, from IT staff to administrative leaders to faculty and students. #CyberSecurity #highereducation

Great catching up with Jeremy Livingston, Neal Sturm, and Michael Reekie at #EdgeCon. NJEdge thanks for an informative event!

In recognition of Cyber Security Awareness Month, the aftermath of Hurricane Helene, and the potential impacts of Hurricane Milton, the Internet Storm Center has provided vital insights into prevalent scams and cybersecurity risks heightened by natural disasters. October serves as a crucial period for refocusing on the diverse tactics employed by scammers, especially in the wake of large-scale crises. The insights below underscore the importance of staying vigilant and informed about potential cyber threats, particularly during times when scammers are likely to exploit the chaos following major disasters. #cybersecurity #cybersecurityawarenessmonth https://lnkd.in/eamVf3Vw

10 days to go! See you at #NJSBAWorkshop

The recent sophisticated deepfake attempt on Senator Ben Cardin is a wake-up call for cybersecurity professionals and policy makers alike. This incident underscores the urgent need to rethink our security protocols in the face of rapidly advancing AI technologies. Find below our three key takeaways and two recommendations. #cybersecurity #advancingAI #deepfake https://lnkd.in/edrkK3Nx

An article from The Hacker News highlights a critical issue in cybersecurity: the over-reliance on adding new tools to enhance security. Instead, too many can inadvertently increase the attack surface, introduce third-party risks, and contribute to complexity without solving core security problems. While security tools are essential, adding too many can overwhelm teams and complicate threat detection. Instead, focus on simplifying your stack with unified platforms, continuous monitoring, and vendor vetting to reduce complexity and third-party risks. Find our recommendations to stay safe below. #thirdparty #cybersecurity #riskassessment https://lnkd.in/edQxwCi3