Tag

Emergency Directive

All articles tagged with #emergency directive

technology2 days ago•3 min saved

CISA orders rapid patch for Cisco SD-WAN flaws across federal networks

CISA issued an emergency directive directing federal agencies to inventory Cisco SD-WAN systems (Catalyst SD-WAN Controller and Manager), apply updates, and check for compromises after a flaw could let an unauthenticated attacker gain admin access. Agencies must patch by Feb. 27 (5 p.m.), document affected systems by Feb. 26, store logs externally, and perform forensic checks, with additional duties by March 5 (inventory/hunt) and March 12 (hardening report). The move underscores a broader push to secure edge devices as attackers increasingly target network boundaries.

via Federal News Network|

#cisa #cisco #cybersecurity

cybersecurity4 months ago•5 min saved

F5 Networks Faces Major Security Breach by Nation-State Hackers

CISA has issued an emergency directive requiring federal agencies to inventory, update, and disconnect vulnerable F5 BIG-IP devices due to a nation-state cyber threat that compromised F5's source code and could enable exploitation, data exfiltration, and network compromise.

via CISA (.gov)|

#cisa #cybersecurity #emergency-directive

cybersecurity6 months ago•4 min saved

Microsoft Exchange Vulnerability Prompts Urgent Security Measures

CISA has issued an emergency directive requiring federal agencies to mitigate a critical post-authentication vulnerability (CVE-2025-53786) in Microsoft Exchange hybrid environments by August 11, 2025, including assessing their systems, updating to the latest CUs, applying hotfixes, disconnecting end-of-life servers, and preparing for API transitions, with ongoing reporting and assistance from CISA.

via CISA (.gov)|

#cisa #cybersecurity #emergency-directive

cybersecurity1 year ago•0 min saved

"US Government Takes Action to Mitigate Russian Hack of Microsoft Email System"

CISA has issued Emergency Directive 24-02 in response to a Russian state-sponsored cyber actor's successful compromise of Microsoft corporate email accounts, requiring Federal Civilian Executive Branch agencies to analyze exfiltrated emails, reset compromised credentials, and secure privileged Microsoft Azure accounts. Other impacted organizations are advised to contact their Microsoft account team, while all organizations are urged to implement stringent security measures such as strong passwords, multifactor authentication, and secure information sharing practices.

via CISA|

#cisa #cybersecurity #emergency-directive

cybersecurity2 years ago•6 min saved

CISA Urges Immediate Mitigation of Ivanti Vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive 24-01 to address vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure solutions, which have been actively exploited by threat actors. Federal agencies are required to immediately implement Ivanti's published mitigation, run the External Integrity Checker Tool, and report any indications of compromise to CISA. Agencies must also take additional steps if compromise is detected and provide a complete inventory of affected products. CISA will provide technical assistance and issue further guidance, with the Directive remaining in effect until all required actions are completed.

via CISA|

#cisa #cybersecurity #emergency-directive