All articles tagged with #emergency directive
CISA has issued an emergency directive requiring federal agencies to inventory, update, and disconnect vulnerable F5 BIG-IP devices due to a nation-state cyber threat that compromised F5's source code and could enable exploitation, data exfiltration, and network compromise.
CISA has issued an emergency directive requiring federal agencies to mitigate a critical post-authentication vulnerability (CVE-2025-53786) in Microsoft Exchange hybrid environments by August 11, 2025, including assessing their systems, updating to the latest CUs, applying hotfixes, disconnecting end-of-life servers, and preparing for API transitions, with ongoing reporting and assistance from CISA.
CISA has issued Emergency Directive 24-02 in response to a Russian state-sponsored cyber actor's successful compromise of Microsoft corporate email accounts, requiring Federal Civilian Executive Branch agencies to analyze exfiltrated emails, reset compromised credentials, and secure privileged Microsoft Azure accounts. Other impacted organizations are advised to contact their Microsoft account team, while all organizations are urged to implement stringent security measures such as strong passwords, multifactor authentication, and secure information sharing practices.
The Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive 24-01 to address vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure solutions, which have been actively exploited by threat actors. Federal agencies are required to immediately implement Ivanti's published mitigation, run the External Integrity Checker Tool, and report any indications of compromise to CISA. Agencies must also take additional steps if compromise is detected and provide a complete inventory of affected products. CISA will provide technical assistance and issue further guidance, with the Directive remaining in effect until all required actions are completed.