Encryption
Every day, without even realizing it, you engage in countless activities that necessitate encryption: checking your email, making an online purchase, or unlocking your smartphone. Yet, despite its ubiquity, encryption remains somewhat of a mystery to many. Serving as an invisible shield safeguarding your data, encryption is a cornerstone of our increasingly digital world. It […]
The Shift to Cyber Offense: What It Means for Critical Infrastructure and Organizations
Cybersecurity threats are evolving, and so is the U.S. approach to combating them. This week, we saw calls for stronger cyberattack deterrence following reports of significant espionage campaigns targeting critical infrastructure and leadership. For organizations managing sensitive systems, this shift signals a new landscape — one that demands proactive measures and heightened readiness. The Cyber […]
Navigating the Latest CMMC 2.0 Updates
the protection of sensitive information is more crucial than ever. For companies in the Defense Industrial Base (DIB), compliance with the latest Cybersecurity Maturity Model Certification (CMMC) guidelines is no longer optional—it’s a competitive necessity. At Black Rock Engineering & Technology, we are committed to keeping our clients informed and prepared for these evolving requirements. […]
Black Rock Engineering & Technology Insights: November Cybersecurity Landscape
At Black Rock Engineering & Technology, we’re committed to staying ahead of the rapidly evolving cybersecurity landscape to protect the integrity of our clients’ digital ecosystems. As of mid-November 2024, the global cybersecurity environment is marked by heightened threats and strategic developments, making vigilance and proactive measures more critical than ever. 1. Surge in Cyber […]
Interpol’s Operation Synergia II: A Milestone in the Fight Against Cybercrime
In an era where cyber threats are evolving at unprecedented speeds, Interpol’s recent Operation Synergia II stands as a significant step in curbing the global cybercrime epidemic. This operation, running from April 1 to August 31, 2024, targeted malicious cyber infrastructures on a global scale, leading to the takedown of over 22,000 malicious IP addresses, […]
US Government Shifts To Skills-Based Hiring, Removing Degree Requirements
In a move to address the growing cybersecurity talent gap, the U.S. government is removing the four-year degree requirement for cybersecurity jobs across multiple federal agencies! This decision marks a significant shift from traditional hiring practices that have predominantly valued academic credentials over practical skills, and subsequently smothered many amazing opportunities for highly skilled, but […]
Urgent Security Alert for Dahua Device Users
CISA is alerting users of Dahua devices about critical security vulnerabilities that pose serious risks. These vulnerabilities are found in certain models of Dahua cameras and recording equipment commonly used in security systems. Immediate action is required to secure your devices and protect against unauthorized access. Key Details You Need to Know: Nature of the […]
Assessing The North Korean Cyber Threat to U.S. Infrastructure
Recent developments have highlighted the ongoing cyber threat from North Korea. In many recent incidents we see North Korea targeting critical infrastructure in the United States. These incidents shine light on the need for vigilance in cybersecurity practices across all industries. Overview of the incidents: North Korean cyber criminals, identified with the Andariel Unit of […]
The CrowdStrike Global Incident in Perspective
This morning, a significant IT outage caused widespread disruptions across the globe effecting various industries, including airlines, banking, and media. This incident was linked to a software update from CrowdStrike, and issues with Microsoft’s Azure cloud platform. The combination of these factors led to major operational disruptions, affecting computers running the Windows operating system with […]
UK Ministry of Defense Data Breach & Global Implications
In May 2024, the UK Ministry of Defense (MoD) was struck by a severe cybersecurity breach, resulting in the exposure of sensitive personal data of nearly 270,000 current and former staff members. Orchestrated through the payroll systems managed by MoD’s private contractor, Shared Services Connected Limited (SSCL), this breach highlights significant vulnerabilities within government cybersecurity […]