Pentagon Mandates CMMC Compliance, AI-Powered Ransomware Emerges, and Apple's Security Upgrades
Business of Tech: Daily 10-Minute IT Services Insights
Audio is streamed directly from the publisher (pdcn.co) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
The Pentagon has officially mandated the Cybersecurity Maturity Model Certification (CMMC) for defense contracts, transitioning from a policy framework to enforceable requirements. This regulation, set to take effect on November 10, 2025, requires contractors to meet specific cybersecurity benchmarks based on the sensitivity of the information they handle. With three certification levels, the CMMC aims to ensure that defense-focused providers adhere to stringent cybersecurity standards. This shift presents both opportunities and challenges for managed service providers (MSPs), as some small and medium-sized businesses may opt out of defense contracts due to compliance costs.
In a significant development, researchers from New York University have demonstrated the feasibility of AI-powered ransomware, dubbed Ransomware 3.0. This proof-of-concept malware utilizes advanced large-language models to create targeted attacks, making it more difficult to detect and defend against. The incident underscores the growing trend of cybercriminals leveraging AI tools, raising concerns about the potential for real-world applications of such technology. Meanwhile, Microsoft has made multi-factor authentication (MFA) mandatory for Azure portal sign-ins, aiming to enhance cybersecurity and reduce account compromise risks.
The podcast also highlights KnowBefore's new white paper on human risk management in cybersecurity, emphasizing a people-centric approach to bolster security culture. Additionally, Secret Double Octopus has launched a program to help MSPs eliminate passwords entirely, moving beyond traditional MFA solutions. Ignite has introduced AI agents tailored for the architecture, engineering, and construction sectors, streamlining documentation tasks and reducing project risks. Sentinel-1's acquisition of Observo AI aims to enhance security operations by improving data management capabilities.
Apple recently unveiled updates to its operating systems and new hardware, including the iPhone 17, which features significant security enhancements like Memory Integrity Enforcement. The company is shifting to a year-based version numbering system for its OS updates, aiming for consistency across its ecosystem. While Apple introduced exciting new features, concerns linger about its AI capabilities compared to competitors like Google and Samsung. The podcast concludes by emphasizing the importance of security improvements and the potential support challenges that IT leaders may face as clients compare Apple devices with Android alternatives.
ย
Four things to know today
ย
00:00 Pentagon Locks In CMMC Enforcement: Defense Contractors Must Certify or Exit by 2025
03:00 From AI-Powered Attacks to Forced MFA: Security Baselines Are Moving, and Providers Must Keep Up
08:18 Appleโs 2025 Launch Balances Security and Hardware Innovation While Downplaying AI
ย
This is the Business of Tech.ย ย
ย
Supported by:ย https://scalepad.com/dave/
ย
https://cometbackup.com/?utm_source=mspradio&utm_medium=podcast&utm_campaign=sponsorship
ย
๐ผ All Our Sponsors
Support the vendors who support the show:
๐ https://businessof.tech/sponsors/
๐ Join Business of Tech Plus
Get exclusive access to investigative reports, vendor analysis, leadership briefings, and more.
๐ https://businessof.tech/plus
๐ง Subscribe to the Business of Tech
Want the show on your favorite podcast app or prefer the written versions of each story?
๐ฒ https://www.businessof.tech/subscribe
๐ฐ Story Links & Sources
Looking for the links from todayโs stories?
Every episode script โ with full source links โ is posted at:
๐ https://www.businessof.tech
๐ Want to Be a Guest?
Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:
๐ฌ https://www.podmatch.com/hostdetailpreview/businessoftech
๐ Follow Business of Tech
LinkedIn: https://www.linkedin.com/company/28908079
YouTube: https://youtube.com/mspradio
Bluesky: https://bsky.app/profile/businessof.tech
Instagram: https://www.instagram.com/mspradio
TikTok: https://www.tiktok.com/@businessoftech
Facebook: https://www.facebook.com/mspradionews
Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.