Ammolite Insights: September 15, 2025
CYBERSECURITY NEWS, INSIGHTS & ANALYSIS
New CMMC Rules: Why Pre-Assessments are Essential
The Department of Defense has finalized CMMC 2.0 rules, making certification a contract requirement starting November 2025. Contractors must now demonstrate the right CMMC level through self-assessments, certified third-party assessments, or DIBCAC reviews before being eligible for award. Delays, failed audits, or incomplete Plans of Action and Milestones (POA&Ms) can jeopardize both compliance and revenue.
Ammolite Security helps organizations stay ahead with CMMC pre-assessments and gap analyses. Our experts review your systems against all 110 NIST SP 800-171 requirements and 320 control objectives, identifying weaknesses before a formal audit uncovers them. You gain a clear roadmap, actionable recommendations, and the confidence that your security posture meets evolving DoD expectations.
By engaging Ammolite Security, your leadership team secures more than compliance. It builds resilience, protects reputation, and ensures eligibility for future contracts.
In The News
Jaguar Land Rover Admits Data Breach Caused by Recent Cyberattack
After announcing that the cyberattack-caused disruption to factories would continue, Jaguar Land Rover is now confirming a data breach.
CISA Releases Fourteen Industrial Control System Advisories
CISA released fourteen Industrial Control Systems (ICS) advisories on September 9, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
Emails and Phone Numbers Accessed in Cyberattack, Federal Government Says
The federal government says individuals’ email addresses and phone numbers associated with Canada Revenue Agency, Employment and Social Development Canada, and Canada Border Services Agency accounts were accessed in a cyberattack.
Training & Education Opportunities
Ammolite Security delivers actionable, in-person cybersecurity training for organizations of all sizes, backed by 20+ years of expertise across diverse domains and industries.
Corporate Training Course:
Artificial Intelligence for Cyber Defense
Transform your cybersecurity skills with our 12-week Artificial Intelligence for Cyber Defense course. This 360-hour program blends hands-on training, real-world case studies, and peer learning, preparing you to combat advanced cyber threats using AI. Earn certifications like Certified Ethical Hacker, CompTIA Security+, and ISACA, while gaining practical experience through labs and work placements.