Hello, Guest!
  • Thursday, November 21, 2024

CISA Warns Agencies of SolarWinds Orion Compromise via Emergency Directive

The Cybersecurity and Infrastructure Security Agency has released an emergency directive directing all federal civilian agencies to mitigate a compromise that threat actors are exploiting in SolarWinds' (NYSE: SWI) Orion Network Management products.

CISA Acting Director Brandon Wales said in a statement published Sunday the vulnerability “poses unacceptable risks to the security of federal networks.”

“Tonight’s directive is intended to mitigate potential compromises within federal civilian networks, and we urge all our partners—in the public and private sectors—to assess their exposure to this compromise and to secure their networks against any exploitation,” Wales added.

According to the directive, an attacker uses the vulnerability to get access to network traffic management systems and agencies should immediately disconnect from their networks SolarWinds Orion products versions 2019.4 to 2020.2.1 HF1.

Agencies using SolarWinds products were advised to submit completion reports to CISA by Dec. 14, Monday.

“The Department of Homeland Security is aware of cyber breaches across the federal government and working closely with our partners in the public and private sector on the federal response,” Alexei Woltornist, assistant secretary for public affairs at DHS, said in a statement Monday.

Video of the Day

Related Articles

CISA Reports Progress on Cyber Threat Responses Due to Collaboration, AI & More Cybersecurity

CISA Reports Progress on Cyber Threat Responses Due to Collaboration, AI & More

Government agencies are seeing more efficient responses and resolutions to cybersecurity issues as a result of a number of strategies, including a focus on collaboration, according to officials from the Cybersecurity and Infrastructure Security Agency. CISA’s David Carroll, who serves as associate director for mission engineering, credits private-public partnerships as the “fuel” of cyber operations and

Head of DHS Procurement Paul Courtney Receives 2024 Wash100 Award From Jim Garrettson News

Head of DHS Procurement Paul Courtney Receives 2024 Wash100 Award From Jim Garrettson

Paul Courtney, chief procurement officer for the Department of Homeland Security, accepted his 2024 Wash100 Award from the award’s founder, Executive Mosaic CEO Jim Garrettson, in a recent in-person meeting. The Wash100 Award is bestowed on the 100 individuals EM’s discerning voting body determines are the foremost change-makers in government contracting and the federal sector. Candidates are evaluated

DHS Unveils Plans for Geospatial Technical Support Services 3.0 BPA Contract Awards

DHS Unveils Plans for Geospatial Technical Support Services 3.0 BPA

The Department of Homeland Security intends to launch a competition for the third iteration of the Geospatial Technical Support Services blanket purchase agreement. GTSS 3.0 is anticipated to have a ceiling amount of over $100 million and DHS expects to issue a solicitation for the planned multiple-award BPA by the end of May, according to