NPD Massive Data Breach, Pentagon's CMMC Rules, Apple Opens NFC, and Ransomware Surge

A massive data breach at National Public Data exposed billions of records and raised concerns about data aggregation risks. The breach, believed to be caused by a third-party hacker, leaked personal information like names and social security numbers, prompting individuals to monitor their credit reports for any suspicious activity.

The second topic covers vulnerabilities found in Microsoft Azure's AI Health Bot service, which could allow for privilege escalation and access to cross-tenant resources. This highlights the importance of secure development practices in AI, especially in sectors like healthcare that are prime targets for cybercriminals. Additionally, a new ransomware group called Hunters International is targeting IT workers with a malware called Sharp Rhino, posing significant risks to organizations.

The Pentagon has proposed CMMC rules for contractors, incorporating Cybersecurity Maturity Model Certification requirements into the contracting process. Contractors will need to self-assess or obtain third-party certification based on data sensitivity, with compliance required at the time of contract award. ConnectWise has committed to assisting providers in achieving CMMC Level 2 compliance by 2025, emphasizing the need for coordination between providers and vendors in meeting compliance standards.

Lastly, Apple has opened NFC access to third-party developers in iOS 18.1, allowing them to utilize the iPhone's secure element for various applications like payments, transit fares, and IDs. This decision follows a legal agreement with European commissioners to comply with EU regulations. By expanding NFC technology on its devices, Apple is creating new opportunities for developers to deliver solutions to customers, enhancing the device's functionality and potential use cases.

Three things to know today

00:00 Massive Data Breach at National Public Data Exposes Billions of Records, Highlights Risks of Data Aggregation

04:32 Pentagon Proposes CMMC Rules for Contractors; ConnectWise Supports MSPs in Achieving Compliance

06:20 Apple Complies with EU Regulations, Grants NFC Secure Element Access to Developers in iOS 18.1

Supported by:  https://trinitycyber.com/msp4/

💼 All Our Sponsors

Support the vendors who support the show:

👉 https://businessof.tech/sponsors/

🚀 Join Business of Tech Plus

Get exclusive access to investigative reports, vendor analysis, leadership briefings, and more.

👉 https://businessof.tech/plus

🎧 Subscribe to the Business of Tech

Want the show on your favorite podcast app or prefer the written versions of each story?

📲 https://www.businessof.tech/subscribe

📰 Story Links & Sources

Looking for the links from today’s stories?

Every episode script — with full source links — is posted at:

🌐 https://www.businessof.tech

🎙 Want to Be a Guest?

Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:

💬 https://www.podmatch.com/hostdetailpreview/businessoftech

🔗 Follow Business of Tech

LinkedIn: https://www.linkedin.com/company/28908079

YouTube: https://youtube.com/mspradio

Bluesky: https://bsky.app/profile/businessof.tech

Instagram: https://www.instagram.com/mspradio

TikTok: https://www.tiktok.com/@businessoftech

Facebook: https://www.facebook.com/mspradionews

Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.