CISA Orders Ivanti VPN Appliances Disconnected: What to Do

February 2, 2024Source: DarkReading

Found this useful? Share it with your network

CISA orders Federal Civilian Executive Branch agencies to remove all Ivanti appliances within 48 hours due to multiple security flaw exploitations. Chinese state-backed cyberattackers exploited at least two vulnerabilities causing CISA to instruct agencies to disconnect Ivanti products. CISA directive applies to 102 agencies, includes Homeland Security, State, Energy, and SEC. All entities using Ivanti appliances urged to prioritize network protection. Appliances can't reconnect until rebuilt and upgraded. Agencies must report steps by Feb. 5, 2024. CISA mandates double password reset, Kerberos tickets revocation, device token revocation, and reports by March 1, 2024.

Read Full Article

Opens on DarkReading

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News