CISA Directs Federal Agencies to Mitigate Ivanti Software Vulnerabilities

CISA has detected ‘widespread and active exploitation of vulnerabilities’ in Ivanti Connect Secure VPN.

The Ivanti logo and cyber binary codes are seen in this illustration on April 20, 2021. Dado Ruvic/Reuters

1/20/2024|Updated: 1/20/2024

0:00

The Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive on Friday urging agencies to mitigate vulnerabilities in Ivanti Connect Secure VPN devices and its Policy Secure tools.

The directive also requires federal agencies to remove compromised products from agency networks and report any indications of compromise to CISA.

Aldgra Fredly

Author

Aldgra Fredly is a freelance writer covering U.S. and Asia Pacific news for The Epoch Times.

Author’s Selected Articles

CISA Directs Federal Agencies to Mitigate Ivanti Software Vulnerabilities

Appeals Court Pauses Order Granting Due Process to Venezuelan Deportees

Protests Against ICE Operations Spread to More Cities

Appeals Court Allows Trump’s Tariffs to Remain in Effect

Chinese National in California Pleads Guilty to Exporting Military Items to North Korea