Latest news with #CyberSheath
Yahoo
16-07-2025
- Business
- Yahoo
Social Engineering Expert and Hacker Rachel Tobac to Deliver Keynote at CyberSheath's CMMC CON 2025
RESTON, Va., July 16, 2025--(BUSINESS WIRE)--With federal contractors facing mandatory CMMC compliance deadlines and sophisticated social engineering attacks on the rise, defense industrial base (DIB) organizations need proven strategies to protect sensitive data from human-centered threats. CyberSheath, the largest CMMC managed service vendor in the DIB, will host its sixth annual free virtual conference, CMMC CON 2025: Compliance Blueprint – Plan. Execute. Certify., on Sept. 24-25, 2025. Rachel Tobac, renowned hacker and CEO of SocialProof Security, will deliver the keynote on the event's first day. She'll break down recent cyberattacks in the news and how to defend against the latest hacking methods, even when criminals are using AI. Her tales from the field and live hacking demonstrations throughout the presentation are sure to keep you and your team "politely paranoid" to catch the next human hacker in the act. "Rachel's hands-on experience exposing vulnerabilities through social engineering gives her a unique perspective on the threats our DIB contractors face daily," said Eric Noonan, CEO of CyberSheath. "Her ability to demonstrate how attackers exploit human psychology makes her the perfect speaker to help our attendees understand why CMMC compliance is so crucial and defend against these sophisticated tactics." Tobac gained recognition in DEF CON's Social Engineering Competition, establishing her as a formidable expert in the field. As CEO of SocialProof Security, she helps organizations strengthen their security posture through targeted training and penetration testing focused on social engineering threats. Her cybersecurity expertise has been sought after at the highest levels of government. Tobac served on the CISA Technical Advisory Council under Director Jen Easterly, where she contributed to national cybersecurity initiatives. Beyond her professional achievements, Tobac serves as Chair of the Board for Women in Security and Privacy (WISP), where she works to advance women leaders in cybersecurity fields. CMMC CON 2025 will feature sessions from leading experts covering compliance strategies, threat mitigation, legal insights, and practical steps for achieving and maintaining CMMC certification. The two-day virtual event runs from 9 a.m. to 1 p.m. EDT each day, providing attendees with actionable insights to enhance their cybersecurity posture and meet Department of Defense requirements. Learn more about CMMC CON 2025 and register to join the two-day event. About CyberSheathEstablished in 2012, CyberSheath is one of the most experienced and trusted IT security services partners for the U.S. defense industrial base. From CMMC compliance to strategic security planning to managed security services, CyberSheath offers a comprehensive suite of offerings tailored to clients' information security and regulatory compliance needs. Learn more at View source version on Contacts CyberSheath Services International, LLCKristen Lexie CapperellaGregory FCA for CyberSheathcybersheath@ Sign in to access your portfolio
Business Wire
16-07-2025
- Business
- Business Wire
Social Engineering Expert and Hacker Rachel Tobac to Deliver Keynote at CyberSheath's CMMC CON 2025
RESTON, Va.--(BUSINESS WIRE)--With federal contractors facing mandatory CMMC compliance deadlines and sophisticated social engineering attacks on the rise, defense industrial base (DIB) organizations need proven strategies to protect sensitive data from human-centered threats. CyberSheath, the largest CMMC managed service vendor in the DIB, will host its sixth annual free virtual conference, CMMC CON 2025: Compliance Blueprint – Plan. Execute. Certify., on Sept. 24-25, 2025. Rachel Tobac, renowned hacker and CEO of SocialProof Security, will deliver the keynote on the event's first day. She'll break down recent cyberattacks in the news and how to defend against the latest hacking methods, even when criminals are using AI. Her tales from the field and live hacking demonstrations throughout the presentation are sure to keep you and your team 'politely paranoid' to catch the next human hacker in the act. 'Rachel's hands-on experience exposing vulnerabilities through social engineering gives her a unique perspective on the threats our DIB contractors face daily,' said Eric Noonan, CEO of CyberSheath. 'Her ability to demonstrate how attackers exploit human psychology makes her the perfect speaker to help our attendees understand why CMMC compliance is so crucial and defend against these sophisticated tactics.' Tobac gained recognition in DEF CON's Social Engineering Competition, establishing her as a formidable expert in the field. As CEO of SocialProof Security, she helps organizations strengthen their security posture through targeted training and penetration testing focused on social engineering threats. Her cybersecurity expertise has been sought after at the highest levels of government. Tobac served on the CISA Technical Advisory Council under Director Jen Easterly, where she contributed to national cybersecurity initiatives. Beyond her professional achievements, Tobac serves as Chair of the Board for Women in Security and Privacy (WISP), where she works to advance women leaders in cybersecurity fields. CMMC CON 2025 will feature sessions from leading experts covering compliance strategies, threat mitigation, legal insights, and practical steps for achieving and maintaining CMMC certification. The two-day virtual event runs from 9 a.m. to 1 p.m. EDT each day, providing attendees with actionable insights to enhance their cybersecurity posture and meet Department of Defense requirements. Learn more about CMMC CON 2025 and register to join the two-day event. About CyberSheath Established in 2012, CyberSheath is one of the most experienced and trusted IT security services partners for the U.S. defense industrial base. From CMMC compliance to strategic security planning to managed security services, CyberSheath offers a comprehensive suite of offerings tailored to clients' information security and regulatory compliance needs. Learn more at
Business Wire
18-06-2025
- Business
- Business Wire
CyberSheath Launches Revamped CMMC CON Ninja Training Program as Compliance Enforcement Intensifies
RESTON, Va.--(BUSINESS WIRE)--Defense contractors face mounting pressure to meet CMMC 2.0 requirements. The Department of Justice's intervention in False Claims Act cases involving NIST 800-171 violations shows that inadequate protection of controlled unclassified information now carries financial and legal risks beyond just losing contracts. Against this backdrop, CyberSheath has redesigned its popular ninja training program to focus on practical compliance execution. Registration is open now through July 18, 2025. The free program now features three intensive courses built around the company's proven AIM methodology: Assess, Implement, and Manage. Those who complete all three courses will earn recognition on the wall of fame at CMMC CON 2025 on Sept. 25, 2025, the closing of the two-day event. 'Contractors who thought they could delay CMMC preparation are now seeing real enforcement consequences, and this program helps them overcome that obstacle,' said Eric Noonan, CEO of CyberSheath. 'Our revamped training gives organizations the tactical knowledge they need to build genuine, audit-ready compliance programs.' Led by Casey Lang, CyberSheath's Vice President of Compliance, the streamlined program eliminates theoretical discussions in favor of hands-on guidance. Participants work through the three phases that determine compliance success: White Belt – Assess: Understanding your current security posture and mapping compliance gaps Blue Belt – Implement: Building and deploying effective security controls Black Belt – Manage: Maintaining ongoing compliance and assessment readiness Courses launch the week of July 21, with participants earning belts through completion of practical assessments. The training program complements CMMC CON 2025, which features the theme 'Compliance Blueprint – Plan. Execute. Certify.' Register for the two-day virtual conference and the ninja training program. About CyberSheath Established in 2012, CyberSheath is one of the most experienced and trusted IT security services partners for the U.S. defense industrial base. From CMMC compliance to strategic security planning to managed security services, CyberSheath offers a comprehensive suite of offerings tailored to clients' information security and regulatory compliance needs. Learn more at
Business Wire
04-06-2025
- Business
- Business Wire
With CMMC Deadline Approaching, CyberSheath Opens Registration for CMMC CON 2025
RESTON, Va.--(BUSINESS WIRE)--Federal contractors face a critical deadline this year with the phased implementation of the Cybersecurity Maturity Model Certification (CMMC) program. The Department of Defense (DOD) has made it clear that compliance is no longer optional, but many contractors are not fully prepared. A recent hearing of the U.S. House Committee on Homeland Security examined threats posed by the Chinese Communist Party and identified telecom provider Huawei as 'a hostile state actor.' One expert witness called securing the global telecommunications core infrastructure 'the defining challenge of the 21 st century.' That's exactly what CMMC CON 2025 is built for. Hosted by CyberSheath, the largest CMMC managed service vendor, the virtual conference and longest-running CMMC event gathers defense contractors, cybersecurity experts, and policy insiders for a practical look at what it takes to get certified and stay compliant. This year's theme, Compliance Blueprint – Plan. Execute. Certify., zeroes in on actionable steps for compliance success. For the first time, the event will be held across two days, Sept. 24-25, 2025, from 9 a.m. to 1 p.m. EDT, and registration is officially open. 'CMMC compliance is a matter of national security, essential to contractors protecting their organizations and the data they hold,' said Eric Noonan, CEO of CyberSheath. 'For the past five years we have kept this event free to help strengthen security for the DIB. Thousands of attendees over the years have gained critical insights for compliance and we'll have another impressive bench of speakers this year to pass along their knowledge, which will be announced in the coming weeks.' Last year's event included insights from Nicole Perlroth, esteemed cybersecurity journalist, author, and member of the CISA Cybersecurity Advisory Committee (CSAC); Michael Berger, Principal Defense and Aerospace Market Sector Leader; and Kelly Mullins, VP of Global Operations at Edge Case Research. Watch highlights here. Learn more about CMMC CON 2025 and register now. About CyberSheath Established in 2012, CyberSheath is one of the most experienced and trusted IT security services partners for the U.S. defense industrial base. From CMMC compliance to strategic security planning to managed security services, CyberSheath offers a comprehensive suite of offerings tailored to clients' information security and regulatory compliance needs. Learn more at
CNN
10-03-2025
- Business
- CNN
Elon Musk's X hit by waves of outages in what he claims is ‘a massive cyberattack'
Elon Musk's X was hit by waves of outages earlier Monday, which the billionaire claims was due to a cyberattack with IP addresses originating in Ukraine. 'We're not sure exactly what happened,' Musk said during a Fox Business interview Monday afternoon. 'But there was a massive cyberattack to try to bring down the X system, with IP addresses originating in the Ukraine area.' Musk did not give any further details about the origin of the attack, including whether he believes it was connected to the Ukrainian government. It is possible to mask IP addresses and make it seem as though the traffic is coming from elsewhere, and spoofing locations is often offered by hackers-for-hire. According to outage tracking site DownDetector, the problems began around 6 a.m. ET when up to 20,538 users reported problems. The issues temporarily died down before nearly 40,000 users reported outages at 10 am. Outages reported on DownDetector began to drop around 2 p.m. ET and trailed off throughout the afternoon. Many users on DownDetector said the platform wouldn't load, and the outage appeared to be global, according to DownDetector's international sites. During the Fox Business interview, which aired during the 4 p.m. ET hour, Musk said platform was working again. DownDetector data is self-reported, meaning it doesn't fully represent the outage's scale. CNN has reached out to X, though the company doesn't usually respond to press inquiries. Musk posted on X early Monday afternoon that he believed 'a large, coordinated group and/or a country is involved,' though the source of motivation behind the attack wasn't confirmed. Musk also replied 'Yes' to a post on X suggesting people are trying to silence the billionaire and his platform, although no further details about the service disruption, including whether it was caused by a targeted attack, have been revealed. Eric Noonan, CEO of cybersecurity provider CyberSheath, told CNN that it's likely too early to tell if an attack caused the issues. 'One of the things that should always be taken with a grain of salt is any statements made in the short period of time, immediately after, or even in this case during an attack,' Noonan said. Musk has a history of attributing technical snafus to cyberattacks. When his conversation with Donald Trump on X started 42 minutes late in August 2024, he said there was a 'probability' of an attack. 'Given the prominence of this conversation, there was of course a 100% probability of DDOS attacks,' Musk posted on the social media platform at the time. DDOS stands for 'distributed denial-of-service,' which involves overwhelming servers with fake traffic to cause service disruptions. But Florida Governor Ron Desantis' presidential campaign announcement on X in 2023 was also marred by technical difficulties. Ransomware attacks have been more common than DDOS attacks in recent years because they're usually financially motivated, according to Noonan. DDOS, however, is typically used to cause a disruption, which also makes confirming the source of these types of attacks more difficult. Musk implemented widespread cuts and major changes to X after acquiring the popular social media platform, then called Twitter, in 2022. He immediately laid off top executives and, within days of acquiring X, cut 3,500 people, or around half the platform's workforce. He laid off 80% of the staff in total and required the remaining employees to return-to-office full time. The platform has experienced a series of glitches and disruptions since the acquisition. It's been a tough day for the businesses owned by Musk, who is also the head of Trump's Department of Government Efficiency (DOGE). On Monday, Tesla shares fell 15% on Monday, erasing its gains since Trump's November 2024 election. This story is developing and will be updated. CNN's Clare Duffy and Hadas Gold contributed to this report.
