Summary: Agencies have just over 24 hours to shut down any instances of widely used software products that were found to contain major cybersecurity vulnerabilities in January. In a supplemental directive released Wednesday, the Cybersecurity and Infrastructure Security Agency tells agencies to disconnect all instances of Ivanti Connect Secure and Ivanti Policy Secure VPN products on their networks by the close of Friday. The latest missive in part supersedes a Jan. 19 emergency directive from CISA telling agencies to remediate the vulnerabilities in those Ivanti products. In addition to disconnecting the products, CISA is telling agencies to continue threat hunting on any systems that have been recently connected to the affected Ivanti devices. Agencies should also continue monitoring any authentication or identity management services that could have been exposed; isolate those connected systems from enterprise resources “to the greatest degree possible;” and continue to audit privilege-level access accounts, according to CISA’s directive. Learn more about your ad choices. Visit megaphone.fm/adchoices
